Subir material

Suba sus trabajos a SEDICI, para mejorar notoriamente su visibilidad e impacto

 

Mostrar el registro sencillo del ítem

dc.date.accessioned 2012-11-08T14:27:31Z
dc.date.available 2012-11-08T14:27:31Z
dc.date.issued 2006-08
dc.identifier.uri http://sedici.unlp.edu.ar/handle/10915/23877
dc.description.abstract This article introduces an approach to anomaly intrusion detection based on a combination of supervised and unsupervised machine learning algorithms. The main objective of this work is an effective modeling of the TCP/IP network traffic of an organization that allows the detection of anomalies with an efficient percentage of false positives for a production environment. The architecture proposed uses a hierarchy of Self-Organizing Maps for traffic modeling combined with Learning Vector Quantization techniques to ultimately classify network packets. The architecture is developed using the known SNORT intrusion detection system to preprocess network traffic. In comparison to other techniques, results obtained in this work show that acceptable levels of compromise between attack detection and false positive rates can be achieved. es
dc.language en es
dc.subject intrusion detection en
dc.subject Internet (e.g., TCP/IP) es
dc.subject Architectures es
dc.subject false positive rates en
dc.subject self-organizing maps en
dc.title Anomaly detection using prior knowledge: application to TCP/IP traffic en
dc.type Objeto de conferencia es
sedici.identifier.isbn 0-387-34654-6 es
sedici.creator.person Couchet, Jorge es
sedici.creator.person Ferreira, Enrique es
sedici.creator.person Manrique, Daniel es
sedici.creator.person Carrascal, Alberto es
sedici.description.note IFIP International Conference on Artificial Intelligence in Theory and Practice - Neural Nets es
sedici.subject.materias Ciencias Informáticas es
sedici.description.fulltext true es
mods.originInfo.place Red de Universidades con Carreras en Informática (RedUNCI) es
sedici.subtype Objeto de conferencia es
sedici.rights.license Creative Commons Attribution-NonCommercial-ShareAlike 2.5 Argentina (CC BY-NC-SA 2.5)
sedici.rights.uri http://creativecommons.org/licenses/by-nc-sa/2.5/ar/
sedici.date.exposure 2006-08
sedici.relation.event 19 th IFIP World Computer Congress - WCC 2006 es
sedici.description.peerReview peer-review es


Descargar archivos

Thumbnail
Documento completo
Descargar archivo (100.2Kb) - PDF

Este ítem aparece en la(s) siguiente(s) colección(ones)

Creative Commons Attribution-NonCommercial-ShareAlike 2.5 Argentina (CC BY-NC-SA 2.5) Excepto donde se diga explícitamente, este item se publica bajo la siguiente licencia Creative Commons Attribution-NonCommercial-ShareAlike 2.5 Argentina (CC BY-NC-SA 2.5)