ToLeRating UR-STD

Author

Feyereisl, Jan ; Aickelin, Uwe

Author_Institution

Sch. of Comput. Sci., Nottingham Univ., Nottingham

fYear

2008

fDate

25-31 Aug. 2008

Firstpage

287

Lastpage

293

Abstract

A new emerging paradigm of uncertain risk of suspicion, threat and danger, observed across the field of information security, is described. Based on this paradigm a novel approach to anomaly detection is presented. Our approach is based on a simple yet powerful analogy from the innate part of the human immune system, the Toll-Like Receptors. We argue that such receptors incorporated as part of an anomaly detector enhance the detector´s ability to distinguish normal and anomalous behaviour. In addition we propose that Toll-Like Receptors enable the classification of detected anomalies based on the types of attacks that perpetrate the anomalous behaviour. Classification of such type is either missing in existing literature or is not fit for the purpose of reducing the burden of an administrator of an intrusion detection system. For our model to work, we propose the creation of a taxonomy of the digital Acytota, based on which our receptors are created.

Keywords

security of data; anomaly detection; digital Acytota; information security; suspicion-threat-and danger risk; toll-like receptor; uncertain risk; Computer science; Computer security; Concrete; Detectors; Forensics; Humans; Immune system; Information security; Intrusion detection; Uncertainty; Anomaly Detection; SOM; TLR;

fLanguage

English

Publisher

ieee

Conference_Titel

Emerging Security Information, Systems and Technologies, 2008. SECURWARE '08. Second International Conference on

Conference_Location

Cap Esterel

Print_ISBN

978-0-7695-3329-2

Electronic_ISBN

978-0-7695-3329-2

Type

conf

DOI

10.1109/SECURWARE.2008.48

Filename

4622596