Skip to Main Content (Press Enter)

Logo UNITO
  • ×
  • Home
  • Pubblicazioni
  • Progetti
  • Persone
  • Competenze
  • Settori
  • Strutture
  • Terza Missione

UNI-FIND
Logo UNITO

|

UNI-FIND

unito.it
  • ×
  • Home
  • Pubblicazioni
  • Progetti
  • Persone
  • Competenze
  • Settori
  • Strutture
  • Terza Missione
  1. Pubblicazioni

Intrusion Detection through Behavioral Data

Contributo in Atti di convegno
Data di Pubblicazione:
1999
Abstract:
We present an approach to the problem of detecting intru- sions in computer systems through the use behavioral data produced by users during their normal login sessions. In fact, attacks may be detected by observing abnormal behavior, and the technique we use consists in associating to each system user a classifier made with relational decision trees that will label login sessions as "legals" or as "intrusions". We perform an experimentation for 10 users, based on their normal work, gathered during a period of three months. We obtain a correct user recog- nition of 90%, using an independent test set. The test set consists of new, previously unseen sessions for the users considered during training, as well as sessions from users not available during the training phase. The obtained performance is comparable with previous studies, but (1) we do not use information that may effect user privacy and (2) we do not bother the users with questions.
Tipologia CRIS:
04A-Conference paper in volume
Keywords:
Computer Security; Intrusion Detection; Behavioura Data
Elenco autori:
GUNETTI D.; G. RUFFO
Autori di Ateneo:
GUNETTI Daniele
Link alla scheda completa:
https://iris.unito.it/handle/2318/19866
Titolo del libro:
proc. of the third symposium on Intelligent Data Analysis
Pubblicato in:
LECTURE NOTES IN COMPUTER SCIENCE
Journal
LECTURE NOTES IN COMPUTER SCIENCE
Series
  • Utilizzo dei cookie

Realizzato con VIVO | Designed by Cineca | 25.6.1.0