On the Contribution of Preamble to Information Hiding in Mimicry Attacks

A
AINAW
2007
21st International Conference on Advanced Information Networking and Applications Workshops (AINAW'07)
Abstract - On the Contribution of Preamble to Information Hiding in Mimicry Attacks

	This Article
	Subscribers, please Login Purchase article: $19 PDF RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by H. Gunes Kayacik Articles by A. Nur Zincir-Heywood

21st International Conference on Advanced Information Networking and Applications Workshops (AINAW'07)

Niagara Falls, Ontario, Canada

May 21-May 23

ISBN: 0-7695-2847-3

	ASCII Text	x
	H. Gunes Kayacik, A. Nur Zincir-Heywood, "On the Contribution of Preamble to Information Hiding in Mimicry Attacks," Advanced Information Networking and Applications Workshops, International Conference on, vol. 1, pp. 632-638, 21st International Conference on Advanced Information Networking and Applications Workshops (AINAW'07), 2007.

	BibTex	x
	@article{ 10.1109/AINAW.2007.269, author = {H. Gunes Kayacik and A. Nur Zincir-Heywood}, title = {On the Contribution of Preamble to Information Hiding in Mimicry Attacks}, journal ={Advanced Information Networking and Applications Workshops, International Conference on}, volume = {1}, year = {2007}, isbn = {0-7695-2847-3}, pages = {632-638}, doi = {http://doi.ieeecomputersociety.org/10.1109/AINAW.2007.269}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Advanced Information Networking and Applications Workshops, International Conference on TI - On the Contribution of Preamble to Information Hiding in Mimicry Attacks SN - 0-7695-2847-3 SP632 EP638 A1 - H. Gunes Kayacik, A1 - A. Nur Zincir-Heywood, PY - 2007 KW - Information hiding KW - anomaly detection KW - benchmarking VL - 1 JA - Advanced Information Networking and Applications Workshops, International Conference on ER -

H. Gunes Kayacik, Dalhousie University, Canada

A. Nur Zincir-Heywood, Dalhousie University, Canada

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/AINAW.2007.269

In this paper, we aim to determine the significance of different stages of an attack, namely the preamble and the exploit, on an achieved anomaly rate. To this end, we analyze four UNIX applications that have been used by the previous researchers against Stide anomaly detector. Our results show that the effect of the preamble on the anomaly rate is much greater when the size of the preamble component of an attack is greater than the size of the exploit component. Furthermore, we investigate the impact of training set selection and the length of sliding window on detector performance.

Index Terms:

Information hiding, anomaly detection, benchmarking

Citation:

H. Gunes Kayacik, A. Nur Zincir-Heywood, "On the Contribution of Preamble to Information Hiding in Mimicry Attacks," ainaw, vol. 1, pp.632-638, 21st International Conference on Advanced Information Networking and Applications Workshops (AINAW'07), 2007

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.