Abstract
Intrusion detection is the process of monitoring and analyzing the events occurring in a computer system in order to detect signs of security problems. The problem of intrusion detection can be solved using anomaly detection techniques. For instance, one is given a set of connection data belonging to different classes (normal activity, different attacks) and the aim is to construct a classifier that accurately classifies new unlabeled connections data. Clustering methods can be used to detect anomaly in data which might implies intrusion of a new type. This chapter gives a critical summary of anomaly detection research for intrusion detection. This chapter surveys a list of research projects that apply anomaly detection techniques to intrusion detection. Finally some directions for research are given.
Original language | English |
---|---|
Title of host publication | Cyber Warfare and Cyber Terrorism |
Publisher | IGI Global |
Pages | 327-337 |
Number of pages | 11 |
ISBN (Print) | 9781591409915 |
DOIs | |
State | Published - 1 Dec 2007 |
ASJC Scopus subject areas
- General Computer Science