Papers

Aug 15, 2005

The Design and Evaluation of Anomaly Detection System Based on System Call

IPSJ journal
  • TATARA KOHEI
    • ,
  • TABATA TOSHIHIRO
    • ,
  • SAKURAI KOUICHI
Volume
46
Number
8
First page
1967
Last page
1975
Language
Japanese
Publishing type
Publisher
Information Processing Society of Japan (IPSJ)
In order to prevent attacks exploiting buffer overflow vulnerabilities, there are many researches of checking programs for abnormal behaviors based on history of system calls emitted by them. In this paper, the authors take into account control flow of the programs, and prove an efficiency of a method for modeling history of system calls in a Bayesian Network. We also consider a method for appropriate anomaly detection without false positives.
Link information
CiNii Articles
http://ci.nii.ac.jp/naid/110002769786
CiNii Books
http://ci.nii.ac.jp/ncid/AN00116647
URL
http://id.ndl.go.jp/bib/7464200
URL
http://id.nii.ac.jp/1001/00010557/
ID information
  • ISSN : 1882-7764
  • CiNii Articles ID : 110002769786
  • CiNii Books ID : AN00116647
Export
BibTeX RIS
To Papers list