Finding proxy users at the service using anomaly detection

机译：使用异常检测在服务处查找代理用户

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

Compromised machines or handsets can be used by attackers as stepping stones for accessing sensitive or protected information. We propose a class of detection methods based on anomaly detection at the service and present two lightweight methods of detecting proxies at the service: one for TCP and one for the application layer. These methods can potentially be deployed to monitor connections in real time so attackers may be stopped before accessing sensitive data. We evaluate these methods on local and wide area networks, with different proxy applications, and under different load conditions to show that the proposed techniques can provide high detection rates at low false positive rates. Our techniques are effective even when the client to proxy connections are out of scope of surveillance and resilient to attacks even during training.

机译：攻击者可以使用受影响的机器或手机作为用于访问敏感或受保护信息的步进石头。我们提出了一类基于服务的异常检测的检测方法，并呈现了两种检测服务器代理的轻量级方法：一个用于TCP，一个用于应用层。这些方法可能会部署以实时监视连接，以便在访问敏感数据之前可能会停止攻击者。我们在本地和广域网上评估这些方法，具有不同的代理应用，在不同的负载条件下，以表明所提出的技术可以以低误率提供高检测率。即使客户到代理连接超出监视范围，也是甚至在训练期间攻击的攻击范围，我们的技术也是有效的。

著录项

来源
《IEEE Conference on Communications and Network Security》|2016年|82-90|共9页
会议地点
作者
Allen T. Webb; A. L. Narasima Reddy;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类
关键词
Servers; Real-time systems; Extraterrestrial measurements;

机译：服务器;实时系统;地外测量;

相似文献

外文文献
中文文献
专利

1. Fraud Detection in Comparison-Shopping Services: Patterns and Anomalies in User Click Behaviors [J] . Sang-Chul LEE, Christos FALOUTSOS, Dong-Kyu CHAE, IEICE transactions on information and systems . 2017,第10期

机译：比较购物服务中的欺诈检测：用户点击行为的模式和异常
2. Adaptive Anomaly Detection in the Behavior of Computer Systems Users on the Basis of Markov Chains of Variable Order. Part Ⅱ. Anomaly Detection Methods and Experimental Results [J] . N.N. KUSSUL, A.M. SOKOLOV Journal of automation and information sciences . 2003,第5a8期

机译：基于变阶马尔可夫链的计算机系统用户行为中的自适应异常检测。第二部分。异常检测方法和实验结果
3. Transition into adult healthcare services in Scotland: findings from a study concerning service users at the Scottish Spina Bifida Association. [J] . Sharon Levy, Andrew H D Wynd, Robert Carachi Scottish medical journal . 2014,第4期

机译：苏格兰向成人医疗服务的过渡：苏格兰Spina Bifida协会有关服务使用者的一项研究发现。
4. Finding proxy users at the service using anomaly detection [C] . Allen T. Webb, A. L. Narasima Reddy IEEE Conference on Communications and Network Security . 2016

机译：使用异常检测查找服务的代理用户
5. Finding fault: Anomaly detection for embedded networked sensing. [D] . Nair, Sheela D. 2009

机译：查找故障：嵌入式网络传感的异常检测。
6. Transition into adult healthcare services in Scotland: findings from a study concerning service users at the Scottish Spina Bifida Association [O] . Sharon Levy, Andrew HD Wynd, Robert Carachi -1

机译：苏格兰向成人医疗服务的过渡：苏格兰Spina Bifida协会有关服务使用者的研究结果
7. Transition into adult healthcare services in Scotland –findings from a study concerning service users at the Scottish Spina Bifida Association [O] . Levy, Sharon, Wynd , Andrew H D, Carachi, Robert 2014

机译：转变为苏格兰的成人医疗保健服务 - 来自苏格兰脊柱裂协会服务使用者研究的结果

Finding proxy users at the service using anomaly detection

摘要

著录项

相似文献

相关主题

期刊订阅