ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Characterizing the behavior of a program using multiple-length N-grams
Full text PdfPdf (1.07 MB)
Source New Security Paradigms Workshop archive
Proceedings of the 2000 workshop on New security paradigms table of contents
Ballycotton, County Cork, Ireland
Pages: 101 - 110  
Year of Publication: 2001
ISBN:1-58113-260-3
Author
Carla Marceau  Odyssey Research Associates, Ithaca, NY
Sponsor
SIGSAC: ACM Special Interest Group on Security, Audit, and Control
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 6,   Downloads (12 Months): 35,   Citation Count: 8
Additional Information:

references   cited by   index terms   collaborative colleagues  

Tools and Actions: Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/366173.366197
What is a DOI?

REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
Michael A Arbib, Theories of abstract automata (Prentice-Hall series in automatic computation), Prentice-Hall, Inc., Upper Saddle River, NJ, 1969
 
2
Computer Science Department University of New Mexico, Synthetic UNM lpr data. 1995: http://www.cs.unm.edu/~immsec/data/synth-lpr.html.
 
3
Computer Science Department University of New Mexico, UNM live inetd data. 1996: http://www.cs.unm.edu/-immsec/data/live-inetd.html.
 
4
Hervé Debar , Marc Dacier , Mehdi Nassehi , Andreas Wespi, Fixed vs. Variable-Length Patterns for Detecting Suspicious Process Behavior, Proceedings of the 5th European Symposium on Research in Computer Security, p.1-15, September 16-18, 1998
5
Stephanie Forrest , Steven A. Hofmeyr , Anil Somayaji, Computer immunology, Communications of the ACM, v.40 n.10, p.88-96, Oct. 1997  [doi>10.1145/262793.262811]
 
6
Stephanie Forrest , Steven A. Hofmeyr , Anil Somayaji , Thomas A. Longstaff, A Sense of Self for Unix Processes, Proceedings of the 1996 IEEE Symposium on Security and Privacy, p.120, May 06-08, 1996
 
7
Dan Gusfield, Algorithms on strings, trees, and sequences: computer science and computational biology, Cambridge University Press, New York, NY, 1997
 
8
Hofmeyr, S., Forrest, S., and Somayaji, A., "Intrusion detection using sequences of system calls," Journal of Computer Security, 1998, 6, p. 151-180.
 
9
Nerode, A., "Linear automaton transformations," Proceedings of the American Mathematics Society, 1958, 9, p. 541-544.
10
Matthew Stillerman , Carla Marceau , Maureen Stillman, Intrusion detection for distributed applications, Communications of the ACM, v.42 n.7, p.62-69, July 1999  [doi>10.1145/306549.306577]

CITED BY  8
Hajime Inoue , Stephanie Forrest, Anomaly intrusion detection in dynamic execution environments, Proceedings of the 2002 workshop on New security paradigms, September 23-26, 2002, Virginia Beach, Virginia
Maja Pusara , Carla E. Brodley, User re-authentication via mouse movements, Proceedings of the 2004 ACM workshop on Visualization and data mining for computer security, October 29-29, 2004, Washington DC, USA
João B. D. Cabrera , Lundy Lewis , Raman K. Mehra, Detection and classification of intrusions and faults using sequences of system calls, ACM SIGMOD Record, v.30 n.4, December 2001
Kenneth L. Ingham , Anil Somayaji , John Burge , Stephanie Forrest, Learning DFA representations of HTTP for protecting web applications, Computer Networks: The International Journal of Computer and Telecommunications Networking, v.51 n.5, p.1239-1255, April, 2007
Carla Marceau , Rob Joyce, Empirical privilege profiling, Proceedings of the 2005 workshop on New security paradigms, September 20-23, 2005, Lake Arrowhead, California
Byoung Uk Kim , Youssif Al-Nashif , Samer Fayssal , Salim Hariri , Mazin Yousif, Anomaly-based fault detection in pervasive computing system, Proceedings of the 5th international conference on Pervasive services, July 06-10, 2008, Sorrento, Italy
Varun Chandola , Arindam Banerjee , Vipin Kumar, Anomaly detection: A survey, ACM Computing Surveys (CSUR), v.41 n.3, p.1-58, July 2009
Travis Atkison, Applying randomized projection to aid prediction algorithms in detecting high-dimensional rogue applications, Proceedings of the 47th Annual Southeast Regional Conference, March 19-21, 2009, Clemson, South Carolina

INDEX TERMS

Primary Classification:
  D. Software
  D.4 OPERATING SYSTEMS

Additional Classification:
  K. Computing Milieux
  K.6 MANAGEMENT OF COMPUTING AND INFORMATION SYSTEMS


General Terms:
Management, Security


Keywords:
computational immunology, finite automata, intrusion detection, string processing

Collaborative Colleagues:
Carla Marceau: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player