Swarm-based knowledge discovery for intrusion behavior discovering

Xiaohui Cui, Justin Beaver, Thomas Potok

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

Abstract

In this research, we developed a technique, the Swarm-based Visual Data Mining approach (SVDM), that will help user to gain insight into the Intrusion Detection System (IDS) alert event data stream, come up with new hypothesis, and verify the hypothesis via the interaction between the human and the system. This novel malicious user detection system can efficiently help security officer detect anomaly behaviors of malicious user in the high dimensional time dependent state spaces. This system's visual representations exploit the human being's innate ability to recognize patterns and utilize this ability to help security manager understand the relationships between seemingly discrete security breaches.

Original languageEnglish
Title of host publicationProceedings - 2010 International Conference on Cyber-Enabled Distributed Computing and Knowledge Discovery, CyberC 2010
Pages270-275
Number of pages6
DOIs
StatePublished - 2010
Event2nd International Conference on Cyber-Enabled Distributed Computing and Knowledge Discovery, CyberC 2010 - Huangshan, China
Duration: Oct 10 2010Oct 12 2010

Publication series

NameProceedings - 2010 International Conference on Cyber-Enabled Distributed Computing and Knowledge Discovery, CyberC 2010

Conference

Conference2nd International Conference on Cyber-Enabled Distributed Computing and Knowledge Discovery, CyberC 2010
Country/TerritoryChina
CityHuangshan
Period10/10/1010/12/10

Keywords

  • Data mining
  • Intrusion
  • Swarm
  • Visualization

Fingerprint

Dive into the research topics of 'Swarm-based knowledge discovery for intrusion behavior discovering'. Together they form a unique fingerprint.

Cite this