Hidden Markov model for malicious hosts detection in a computer network

Autor: Nick N. Ivanov, Yakov Bubnov
Jazyk: běloruština
Rok vydání: 2020
Předmět:
Zdroj: Журнал Белорусского государственного университета: Математика, информатика, Iss 3, Pp 73-79 (2020)
ISSN: 2617-3956
2520-6508
Popis: The problem of malicious host detection in a computer network is reviewed. Activity of computer network hosts is tracking by a noisy detector. The paper suggests method for detection malicious hosts using activity timeseries classification. The approach is based on hidden Markov chain model that analyses timeseries and consecutive search of the most probable final state of the model. Efficiency of the approach is based on assumption that advanced persisted threats are localised in time, therefore malicious hosts in a computer network can be detected by virtue of activity comparison with reliable safe hosts.
Databáze: OpenAIRE