Improving Intrusion Detection Systems using Zero-Shot Recognition via Graph Embeddings

机译：通过图嵌入使用零射击识别来改进入侵检测系统

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

In order to detect insider threats, anomaly-based intrusion detection must learn profiles of normal user behavior. However this is particularly difficult when historical audit data is scarce. Zero-shot learning can address this limitation by compensating the absence of examples with semantic knowledge, allowing to better estimate behavior of unknown users. In this paper, we address insider threat detection in two use cases where historical user data is unavailable or obsolete. We extend an existing intrusion detection system by adding information describing user positions, roles and projects assignments. These semantic descriptions are encoded via graph embeddings. Experimental results show that providing this additional context improves insider threat detection significantly. This suggests that zero-shot learning is a promising way of improving intrusion detection systems.

机译：为了检测内部威胁，基于异常的入侵检测必须学习正常用户行为的配置文件。但是，在缺乏历史审计数据时，这尤其困难。零镜头学习可以通过用语义知识补偿示例的缺失来解决此限制，从而可以更好地估计未知用户的行为。在本文中，我们在历史用户数据不可用或已过时的两个用例中讨论了内部威胁检测。通过添加描述用户位置，角色和项目分配的信息，我们扩展了现有的入侵检测系统。这些语义描述是通过图形嵌入进行编码的。实验结果表明，提供此附加上下文可以显着改善内部威胁检测。这表明零镜头学习是改进入侵检测系统的一种有前途的方法。

著录项

来源
《IEEE Annual Computers, Software, and Applications Conference》|2020年|790-797|共8页
会议地点
作者
Saber Zerhoudi; Michael Granitzer; Mathieu Garchery;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类
关键词
Intrusion detection; Feature extraction; Organizations; Neural networks; Training; Task analysis; Computational modeling;

机译：入侵检测;特征提取;组织;神经网络;训练;任务分析;计算模型;

相似文献

外文文献
中文文献
专利

1. Coupling Adversarial Graph Embedding for transductive zero-shot action recognition [J] . Tian Yi, Huang Yaping, Xu Wanru, Neurocomputing . 2021,第Sepa10期

机译：耦合对抗性图形嵌入用于转换零射击动作识别
2. Secured UAV based on multi-agent systems and embedded Intrusion Detection and Prevention Systems [J] . K.Boukhdir, F.Marzouk, H.Medromi, American Journal of Engineering Research . 2015,第8期

机译：基于多代理系统和嵌入式入侵检测与防御系统的安全无人机
3. System Calls Instrumentation for Intrusion Detection in Embedded Mixed-Criticality Systems [J] . Marine Kadar, Sergey Tverdyshev, Gerhard Fohler OASIcs : OpenAccess Series in Informatics . 2019,第1期

机译：系统调用用于嵌入式混合关键系统中入侵检测的工具
4. Zero-Shot Recognition via Semantic Embeddings and Knowledge Graphs [C] . Xiaolong Wang, Yufei Ye, Abhinav Gupta IEEE/CVF Conference on Computer Vision and Pattern Recognition . 2018

机译：通过语义嵌入和知识图进行零散识别
5. Toward a Hardware-assisted Online Intrusion Detection System Based on Deep Learning Algorithms for Resource-limited Embedded Systems [D] . Alrawashdeh, Khaled. 2018

机译：基于资源限制嵌入式系统的深度学习算法的基于深度学习算法的硬件辅助在线入侵检测系统
6. Improving the Performance of Machine Learning-Based Network Intrusion Detection Systems on the UNSW-NB15 Dataset [O] . Soulaiman Moualla, Khaldoun Khorzom, Assef Jafar 2021

机译：在UNSW-NB15数据集上提高基于机器学习的网络入侵检测系统的性能
7. Zero-Shot Recognition via Semantic Embeddings and Knowledge Graphs [O] . Xiaolong Wang, Yufei Ye, Abhinav Gupta 2018

机译：通过语义嵌入和知识图形零拍识别

Improving Intrusion Detection Systems using Zero-Shot Recognition via Graph Embeddings

摘要

著录项

相似文献

相关主题

期刊订阅