TY - GEN
T1 - Storage-based anomaly intrusion detection Technology based on D-S evidence theory
AU - Xue, Jingfeng
AU - Zhao, Fengnian
AU - Zhao, Xiaolin
AU - Shu, Gang
PY - 2008
Y1 - 2008
N2 - The storage operation of normal process in host system is analyzed and an anomaly intrusion detection method based on D-S evidence theory for storage system is proposed. The detector fuses multiple signatures of storage data to decide whether the storage operation flow is normal. Furthermore, six groups of light-computation signatures of storage operation data are used to develop an efficient fusion mechanism to guarantee high performance of the algorithm. Experiment shows that high detection rate can be achieved by such fusion.
AB - The storage operation of normal process in host system is analyzed and an anomaly intrusion detection method based on D-S evidence theory for storage system is proposed. The detector fuses multiple signatures of storage data to decide whether the storage operation flow is normal. Furthermore, six groups of light-computation signatures of storage operation data are used to develop an efficient fusion mechanism to guarantee high performance of the algorithm. Experiment shows that high detection rate can be achieved by such fusion.
UR - http://www.scopus.com/inward/record.url?scp=62949214050&partnerID=8YFLogxK
U2 - 10.1109/ICCEE.2008.146
DO - 10.1109/ICCEE.2008.146
M3 - Conference contribution
AN - SCOPUS:62949214050
SN - 9780769535043
T3 - Proceedings of the 2008 International Conference on Computer and Electrical Engineering, ICCEE 2008
SP - 507
EP - 510
BT - Proceedings of the 2008 International Conference on Computer and Electrical Engineering, ICCEE 2008
T2 - 2008 International Conference on Computer and Electrical Engineering, ICCEE 2008
Y2 - 20 December 2008 through 22 December 2008
ER -