Skip to main content
SpringerLink
Log in
Book cover

International Workshop on Recent Advances in Intrusion Detection

RAID 2008: Recent Advances in Intrusion Detection pp 398–399Cite as

Improving Anomaly Detection Error Rate by Collective Trust Modeling

(Extended Abstract)

  • Conference paper

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 5230))

Abstract

Current Network Behavior Analysis (NBA) techniques are based on anomaly detection principles and therefore subject to high error rates. We propose a mechanism that deploys trust modeling, a technique for cooperator modeling from the multi-agent research, to improve the quality of NBA results. Our system is designed as a set of agents, each of them based on an existing anomaly detection algorithm coupled with a trust model based on the same traffic representation. These agents minimize the error rate by unsupervised, multi-layer integration of traffic classification. The system has been evaluated on real traffic in Czech academic networks.

This is a preview of subscription content, log in via an institution.

Chapter
USD   29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD   89.00
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever

Tax calculation will be finalised at checkout

Purchases are for personal use only

Learn about institutional subscriptions

References

  1. Rehak, M., Pechoucek, M.: Trust modeling with context representation and generalized identities. In: Klusch, M., Hindriks, K.V., Papazoglou, M.P., Sterling, L. (eds.) CIA 2007. LNCS (LNAI), vol. 4676, pp. 298–312. Springer, Heidelberg (2007)

    Chapter  Google Scholar 

  2. Valeur, F., Vigna, G., Kruegel, C., Kemmerer, R.A.: A comprehensive approach to intrusion detection alert correlation. IEEE Transactions on Dependable and Secure Computing 01, 146–169 (2004)

    Article  Google Scholar 

  3. Giacinto, G., Perdisci, R., Rio, M.D., Roli, F.: Intrusion detection in computer networks by a modular ensemble of one-class classifiers. Information Fusion 9, 69–82 (2008)

    Article  Google Scholar 

  4. Rehak, M., Pechoucek, M., Grill, M., Bartos, K.: Trust-based classifier combination for network anomaly detection. In: Cooperative Information Agents XII. LNCS(LNAI), Springer, Heidelberg (to appear, 2008)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Department of Cybernetics, Czech Technical University in Prague,  

    Martin Rehák, Michal Pěchouček, Karel Bartoš & Martin Grill

  2. CESNET, z. s. p. o.,  

    Karel Bartoš & Martin Grill

  3. Institute of Computer Science, Masaryk University,  

    Pavel Čeleda & Vojtěch Krmíček

Authors
  1. Martin Rehák
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Michal Pěchouček
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Karel Bartoš
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Martin Grill
    View author publications

    You can also search for this author in PubMed Google Scholar

  5. Pavel Čeleda
    View author publications

    You can also search for this author in PubMed Google Scholar

  6. Vojtěch Krmíček
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Richard Lippmann Engin Kirda Ari Trachtenberg

Rights and permissions

Reprints and permissions

Copyright information

© 2008 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Rehák, M., Pěchouček, M., Bartoš, K., Grill, M., Čeleda, P., Krmíček, V. (2008). Improving Anomaly Detection Error Rate by Collective Trust Modeling. In: Lippmann, R., Kirda, E., Trachtenberg, A. (eds) Recent Advances in Intrusion Detection. RAID 2008. Lecture Notes in Computer Science, vol 5230. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-87403-4_25

Download citation

  • DOI: https://doi.org/10.1007/978-3-540-87403-4_25

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-87402-7

  • Online ISBN: 978-3-540-87403-4

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation