2000 BenchmarkingAnomalyBasedDetecti
- (Maxion & Tan, 2000) ⇒ Roy A. Maxion, and Kymie M. C. Tan. (2000). “Benchmarking Anomaly-Based Detection Systems.” In: Proceedings of the 2000 International Conference on Dependable Systems and Networks (formerly FTCS-30 and DCCA-8). ISBN:0-7695-0707-7
Subject Headings: Anomaly Detection Task.
Notes
Cited By
- http://scholar.google.com/scholar?q=%222000%22+%5Bhttp%3A%2F%2Fwenke.gtisc.gatech.edu%2Fids-readings%2Fmaxiontan00.pdf+Benchmarking+Anomaly-Based+Detection+Systems%5D
- http://dl.acm.org/citation.cfm?id=647881.737776&preflayout=flat#citedby
Quotes
Abstract
Anomaly detection is a key element of intrusion-detection and other detection systems in which perturbations of normal behavior suggest the presence of intentionally or unintentionally induced attacks, faults, defects, etc. Because most anomaly detectors are based on probabilistic algorithms that exploit the intrinsic structure, or regularity, embedded in data logs, a fundamental question is whether such structure influences detection performance. If detector performance were indeed a function of environmental regularity, it would be critical to match detectors to environmental characteristics. In intrusion-detection settings, however, this is not done, possibly because such characteristics are not easily ascertained. This paper introduces a metric for characterizing structure in data environments, and tests the hypothesisthat intrinsic structure influences probabilistic detection. In a series of experiments, an anomaly-detection algorithm was applied to a benchmark suite of 165 carefully calibrated, anomaly-injected datasets of varying structure. Results showed performance differences of as much as an order of magnitude, indicating that current approaches to anomaly detection may not be universally dependable.
References
;
Author | volume | Date Value | title | type | journal | titleUrl | doi | note | year | |
---|---|---|---|---|---|---|---|---|---|---|
2000 BenchmarkingAnomalyBasedDetecti | Roy A. Maxion Kymie M. C. Tan | Benchmarking Anomaly-Based Detection Systems | 2000 |