Intelligent Agents for Intrusion Detection

Get BibTex-formatted data

Author

Guy G. Helmer, Johnny S. K. Wong, Vasant Honavar, Les Miller

Entry type

techreport

Abstract

This paper focuses on intrusion detection and countermeasures with respect to widely-used operating systems and networks. The design and architecture of an intrusion detection system built from distributed agents is proposed to implement an intelligent system on which data mining can be performed to provide global, temporal views, of an entire networked system. A starting point for agent intelligence in our system is the research into the use of machine learning over system call traces from the privileged sendmail program on UNIX. We use a rule learning algorithm to classify the system call traces for intrusion detection purposes and show the results.

URL

http://66.102.1.104/scholar?q= ... usion+Detection&hl=en

Address

Ames, Iowa 50011

Key alpha

Helmer

Publisher

Iowa State University

Affiliation

Iowa State University

Publication Date

2001-01-01

Keywords

intrusion detection, Distributed Intrusion Detection System, sendmail

Language

English

BibTex-formatted data

To refer to this entry, you may select and copy the text below and paste it into your BibTex document. Note that the text may not contain all macros that BibTex supports.

@Techreport{ Helmer,
	title = "Intelligent Agents for Intrusion Detection",
	author = "Guy G. Helmer, Johnny S. K. Wong, Vasant Honavar, Les Miller",
	address = "Ames, Iowa 50011",
	pages = "4",
	publisher = "Iowa State University",
	abstract = "This paper focuses on intrusion detection and countermeasures with respect to widely-used operating systems and networks.  The design and architecture of an intrusion detection system built from distributed agents is proposed to implement an intelligent system on which data mining can be performed to provide global, temporal views, of an entire networked system.
A starting point for agent intelligence in our system is the research into the use of machine learning over system call traces from the privileged sendmail program on UNIX.  We use a rule learning algorithm to classify the system call traces for intrusion detection purposes and show the results.",
	affiliation = "Iowa State University ",
	keywords = "intrusion detection, Distributed Intrusion Detection System, sendmail",
	language = "English",
	url = "http://66.102.1.104/scholar?q=cache:WkAV3QXSQHcJ:scholar.google.com/+Intelligent+Agents+for+Intrusion+Detection&hl=en",
}