Title | ||
---|---|---|
Using Dynamic Programming Techniques to Detect Multi-hop Stepping-Stone Pairs in a Connection Chain |
Abstract | ||
---|---|---|
Stepping-stone attack in network intrusion detection are attackers who use a sequence of intermediate (or so called stepping-stone) hosts to initiate attacks in order to hide their origins. We investigate a number of dynamic programming based pattern recognition approaches and our novel algorithm for detecting correlation and similarity of two connections not only into and out of a single stepping stone host(consecutive streams), but also across multiple stepping-stone hosts. The goal of this paper is to find out which technique can be better adopted for detection applications. To evaluate their accuracy and efficiency, we conduct extensive experiments. We also evaluate how chaff packets and time skew may affect these methods. We compare the results from five methods with their false positive and false negative rates. We demonstrate that our proposed approach named OSSM returns very good performance even under a variety of complex circumstances. |
Year | DOI | Venue |
---|---|---|
2010 | 10.1109/AINA.2010.132 | AINA |
Keywords | Field | DocType |
intrusion detection,network security,time skew,stepping-stone attack,network intrusion detection,pattern recognition,chaff packet,pattern recognition approaches,ossm,detect multi-hop stepping-stone pairs,complex circumstance,dynamic programming techniques,extensive experiment,multiple stepping-stone host,false negative rate,stepping stone attack,detection application,consecutive stream,correlation,connection chain,multihop stepping stone pairs,dynamic programming,chaff packets,security of data,delta modulation,cryptography,time series analysis,false positive,pattern matching,computer science,application software,data mining | Dynamic programming,Time series,Computer science,Network security,Network packet,Skew,Artificial intelligence,Hop (networking),Pattern matching,Intrusion detection system,Machine learning | Conference |
ISSN | ISBN | Citations |
1550-445X | 978-1-4244-6695-5 | 0 |
PageRank | References | Authors |
0.34 | 19 | 5 |
Name | Order | Citations | PageRank |
---|---|---|---|
Ying-Wei Kuo | 1 | 41 | 3.89 |
Shou-hsuan Stephen Huang | 2 | 174 | 59.88 |
Wei Ding | 3 | 834 | 72.61 |
Rebecca Kern | 4 | 13 | 1.92 |
Jianhua Yang | 5 | 1 | 1.70 |