Free Online Productivity Tools
i2Speak
i2Symbol
i2OCR
iTex2Img
iWeb2Print
iWeb2Shot
i2Type
iPdf2Split
iPdf2Merge
i2Bopomofo
i2Arabic
i2Style
i2Image
i2PDF
iLatex2Rtf
Sci2ools
AINA
2007
IEEE
2007
IEEE
On the Contribution of Preamble to Information Hiding in Mimicry Attacks
In this paper, we aim to determine the significance of different stages of an attack, namely the preamble and the exploit, on an achieved anomaly rate. To this end, we analyze four UNIX applications that have been used by the previous researchers against Stide anomaly detector. Our results show that the effect of the preamble on the anomaly rate is much greater when the size of the preamble component of an attack is greater than the size of the exploit component. Furthermore, we investigate the impact of training set selection and the length of sliding window on detector performance. Keywords Information hiding, anomaly detection, benchmarking
Real-time TrafficAchieved Anomaly Rate | AINA 2007 | Computer Networks | Preamble Component | Stide Anomaly Detector |
Related Content
| Added | 05 Jun 2010 |
| Updated | 05 Jun 2010 |
| Type | Conference |
| Year | 2007 |
| Where | AINA |
| Authors | Hilmi Günes Kayacik, A. Nur Zincir-Heywood |
Comments (0)
Researcher Info
|
