TIIS (Çѱ¹ÀÎÅͳÝÁ¤º¸ÇÐȸ)
Current Result Document : 3 / 4
| ÇѱÛÁ¦¸ñ(Korean Title) |
An Anomalous Behavior Detection Method Using System Call Sequences for Distributed Applications |
| ¿µ¹®Á¦¸ñ(English Title) |
An Anomalous Behavior Detection Method Using System Call Sequences for Distributed Applications |
| ÀúÀÚ(Author) |
Chuan Ma
Limin Shen
Tao Wang
|
| ¿ø¹®¼ö·Ïó(Citation) |
VOL 09 NO. 02 PP. 0659 ~ 0679 (2015. 02) |
Çѱ۳»¿ë
(Korean Abstract) |
|
¿µ¹®³»¿ë
(English Abstract) |
Distributed applications are composed of multiple nodes, which exchange information with individual nodes through message passing. Compared with traditional applications, distributed applications have more complex behavior patterns because a large number of interactions and concurrent behaviors exist among their distributed nodes. Thus, it is difficult to detect anomalous behaviors and determine the location and scope of abnormal nodes, and some attacks and misuse cannot be detected. To address this problem, we introduce a method for detecting anomalous behaviors based on process algebra. We specify the architecture of the behavior detection model and the detection algorithm. The anomalous behavior detection and analysis demonstrate that our method is a good discriminator between normal and anomalous behavior characteristics of distributed applications. Performance evaluation shows that the proposed method enhances efficiency without security degradation.
|
| Å°¿öµå(Keyword) |
Behavior detection
distributed applications
anomalous behavior
process algebra
system call
|
| ÆÄÀÏ÷ºÎ |
PDF ´Ù¿î·Îµå
|
