• DocumentCode
    462226
  • Title

    Process Profiling Using Frequencies of System Calls

  • Author

    Varghese, Surekha Mariam ; Jacob, K. Poulose

  • Author_Institution
    Dept. of Comput. Sci. & Eng., M.A. Coll. of Eng., Kothamangalam
  • fYear
    2007
  • fDate
    10-13 April 2007
  • Firstpage
    473
  • Lastpage
    479
  • Abstract
    In this paper we discuss our research in developing general and systematic method for anomaly detection. The key ideas are to represent normal program behaviour using system call frequencies and to incorporate probabilistic techniques for classification to detect anomalies and intrusions. Using experiments on the sendmail system call data, we demonstrate that we can construct concise and accurate classifiers to detect anomalies. We provide an overview of the approach that we have implemented
  • Keywords
    security of data; system monitoring; anomaly detection; intrusion detection; probabilistic classification; process profiling; program behaviour; sendmail system call data; system call frequencies; Application software; Buffer overflow; Computer science; Computer security; Data security; Educational institutions; Frequency; Intrusion detection; Jacobian matrices; Operating systems;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Availability, Reliability and Security, 2007. ARES 2007. The Second International Conference on
  • Conference_Location
    Vienna
  • Print_ISBN
    0-7695-2775-2
  • Type

    conf

  • DOI
    10.1109/ARES.2007.116
  • Filename
    4159838
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=462226