Paper Info
Title
Dynamic information source selection for intrusion detection systems
Abstract
Our work presents a mechanism designed for the selection of the optimal information provider in a multi-agent, heterogeneous and unsupervised monitoring system. The self-adaptation mechanism is based on the insertion of a small set of prepared challenges that are processed together with the real events observed by the system. The evaluation of the system response to these challenges is used to select the optimal information source. Our algorithm uses the concept of trust to identify the best source and to optimize the number of challenges inserted into the system. The mechanism is designed for intrusion/fraud detection systems, which are frequently deployed as part of online transaction processing (banking, telecommunications or process monitoring systems). Our approach features unsupervised adjustment of its configuration and dynamic adaptation to the changing environment, which are both vital for these domains.
Year
DOI
Venue
2009
10.5555/1558109.1558153
AAMAS (2)
Keywords
Field
DocType
system response,fraud detection system,optimal information source,optimal information provider,best source,unsupervised monitoring system,process monitoring system,dynamic adaptation,self-adaptation mechanism,intrusion detection system,dynamic information source selection,unsupervised adjustment,trust,intrusion detection,mechanism design,transaction processing,security
Data mining,Host-based intrusion detection system,Intrusion,Monitoring system,Computer science,Information providers,Online transaction processing,Intrusion prevention system,Intrusion detection system,Small set,Distributed computing
Conference
Citations 
PageRank 
References 
11
0.80
20
Authors
6
Name
Order
Citations
PageRank
Martin Rehak125128.57
Eugen Staab2636.75
Michal Pěchouček31134133.88
Jan Stiborek41148.57
Martin Grill510110.79
Karel Bartos611012.60