A Computer Host-Based User Anomaly Detection System Using the Self-Organizing Map

I
IJCNN
2000
IEEE-INNS-ENNS International Joint Conference on Neural Networks (IJCNN'00)-Volume 5
Abstract - A Computer Host-Based User Anomaly Detection System Using the Self-Organizing Map

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Albert J. Höglund Articles by Kimmo Hätönen Articles by Antti S. Sorvari

IEEE-INNS-ENNS International Joint Conference on Neural Networks (IJCNN'00)-Volume 5

Como, Italy

July 24-July 27

ISBN: 0-7695-0619-4

	ASCII Text	x
	Albert J. Höglund, Kimmo Hätönen, Antti S. Sorvari, "A Computer Host-Based User Anomaly Detection System Using the Self-Organizing Map," Neural Networks, IEEE - INNS - ENNS International Joint Conference on, vol. 5, pp. 5411, IEEE-INNS-ENNS International Joint Conference on Neural Networks (IJCNN'00)-Volume 5, 2000.

	BibTex	x
	@article{ 10.1109/IJCNN.2000.861504, author = {Albert J. Höglund and Kimmo Hätönen and Antti S. Sorvari}, title = {A Computer Host-Based User Anomaly Detection System Using the Self-Organizing Map}, journal ={Neural Networks, IEEE - INNS - ENNS International Joint Conference on}, volume = {5}, year = {2000}, issn = {1098-7576}, pages = {5411}, doi = {http://doi.ieeecomputersociety.org/10.1109/IJCNN.2000.861504}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Neural Networks, IEEE - INNS - ENNS International Joint Conference on TI - A Computer Host-Based User Anomaly Detection System Using the Self-Organizing Map SN - 1098-7576 SP EP A1 - Albert J. Höglund, A1 - Kimmo Hätönen, A1 - Antti S. Sorvari, PY - 2000 KW - Self-Organizing Map (SOM) KW - anomaly detection KW - novelty detection KW - host-based intrusion detection VL - 5 JA - Neural Networks, IEEE - INNS - ENNS International Joint Conference on ER -

Albert J. Höglund, Nokia Research Center

Kimmo Hätönen, Nokia Research Center

Antti S. Sorvari, Nokia Research Center

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/IJCNN.2000.861504

Computer systems are vulnerable to abuse by insiders and to penetration by outsiders. The amount of monitoring data generated in computer networks is enormous. Tools are needed to ease the work of system operators. Anomaly detection attempts to recognize abnormal behavior to detect intrusions. A prototype UNIX Anomaly Detection System has been constructed. The system is host-based and monitors computer network host users. The system contains an automatic anomaly detection component. This component uses a test based on the Self-Organizing Map to test if user behavior is anomalous. Both the test and the application are presented in this paper.

Index Terms:

Self-Organizing Map (SOM), anomaly detection, novelty detection, host-based intrusion detection

Citation:

Albert J. Höglund, Kimmo Hätönen, Antti S. Sorvari, "A Computer Host-Based User Anomaly Detection System Using the Self-Organizing Map," ijcnn, vol. 5, pp.5411, IEEE-INNS-ENNS International Joint Conference on Neural Networks (IJCNN'00)-Volume 5, 2000

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.