Hidden Markov model for malicious hosts detection in a computer network
Autor: | Nick N. Ivanov, Yakov Bubnov |
---|---|
Jazyk: | běloruština |
Rok vydání: | 2020 |
Předmět: |
Statistics and Probability
hidden markov model Algebra and Number Theory Computer science business.industry lcsh:Mathematics Detector timeseries classification lcsh:QA1-939 advanced persisted threat Computational Theory and Mathematics Hidden markov chain model Discrete Mathematics and Combinatorics State (computer science) Time series business Hidden Markov model Host (network) computer network Computer network |
Zdroj: | Журнал Белорусского государственного университета: Математика, информатика, Iss 3, Pp 73-79 (2020) |
ISSN: | 2617-3956 2520-6508 |
Popis: | The problem of malicious host detection in a computer network is reviewed. Activity of computer network hosts is tracking by a noisy detector. The paper suggests method for detection malicious hosts using activity timeseries classification. The approach is based on hidden Markov chain model that analyses timeseries and consecutive search of the most probable final state of the model. Efficiency of the approach is based on assumption that advanced persisted threats are localised in time, therefore malicious hosts in a computer network can be detected by virtue of activity comparison with reliable safe hosts. |
Databáze: | OpenAIRE |
Externí odkaz: |