In the last few years the number and impact of security attacks over the Internet have been continuously increasing. Since it is impossible to guarantee complete protection to a system by means of the "classical" prevention mechanisms, the use of Intrusion Detection Systems (IDSs) has emerged as a key element in network security. In this paper we address the problem considering some techniques for detecting network anomalies, based on the use of co-occurrence matrices, to model the "normal" behavior of the TCP connections. The performance analysis, shows a comparison among the different solutions, which demonstrates the effectiveness of the proposed methods.
Titolo: | On the Use of Co-Occurrence Matrices for Network Anomaly Detection |
Autori interni: | |
Anno del prodotto: | 2009 |
Abstract: | In the last few years the number and impact of security attacks over the Internet have been continuously increasing. Since it is impossible to guarantee complete protection to a system by means of the "classical" prevention mechanisms, the use of Intrusion Detection Systems (IDSs) has emerged as a key element in network security. In this paper we address the problem considering some techniques for detecting network anomalies, based on the use of co-occurrence matrices, to model the "normal" behavior of the TCP connections. The performance analysis, shows a comparison among the different solutions, which demonstrates the effectiveness of the proposed methods. |
Handle: | http://hdl.handle.net/11568/200609 |
ISBN: | 9781605585697 |
Appare nelle tipologie: | 4.1 Contributo in Atti di convegno |