Translator Disclaimer
22 July 2003 Protecting against cyber threats in networked information systems
Author Affiliations +
This paper provides an overview of our efforts in detecting cyber attacks in networked information systems. Traditional signature based techniques for detecting cyber attacks can only detect previously known intrusions and are useless against novel attacks and emerging threats. Our current research at the University of Minnesota is focused on developing data mining techniques to automatically detect attacks against computer networks and systems. This research is being conducted as a part of MINDS (Minnesota Intrusion Detection System) project at the University of Minnesota. Experimental results on live network traffic at the University of Minnesota show that the new techniques show great promise in detecting novel intrusions. In particular, during the past few months our techniques have been successful in automatically identifying several novel intrusions that could not be detected using state-of-the-art tools such as SNORT.
© (2003) COPYRIGHT Society of Photo-Optical Instrumentation Engineers (SPIE). Downloading of the abstract is permitted for personal use only.
Levent Ertoz, Aleksandar Lazarevic, Eric Eilertson, Pang-Ning Tan, Paul Dokas, Vipin Kumar, and Jaideep Srivastava "Protecting against cyber threats in networked information systems", Proc. SPIE 5101, Battlespace Digitization and Network-Centric Systems III, (22 July 2003);

Back to Top