Skip to main content
Conference Proceedings

A probabilistic method for detecting anomalous program behavior

Lecture Notes in Computer Science (2005) 3325 87-98
DOI: 10.1007/978-3-540-31815-6_8
0Citations
Citations of this article
21Readers
Mendeley users who have this article in their library.
Get full text

Abstract

In this paper, we, as well as Eskin, Lee, Stolfo propose a method of prediction model. In their method, the program was characterized with both the order and the kind of system calls. We focus on a non-sequential feature of system calls given from a program. We apply a Bayesian network to predicting the N-th system call from the sequence of system calls of the length N - 1. In addition, we show that a correlation between several kinds of system calls can be expressed by using our method, and can characterize a program behavior. © Springer-Verlag Berlin Heidelberg 2004.

Author supplied keywords

Cite

CITATION STYLE

APA

Tatara, K., Tabata, T., & Sakurai, K. (2005). A probabilistic method for detecting anomalous program behavior. In Lecture Notes in Computer Science (Vol. 3325, pp. 87–98). Springer Verlag. https://doi.org/10.1007/978-3-540-31815-6_8

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free