The Malicious Email Tracking (MET) system, reported in a prior publication, is a behavior-based security system for email services. The Email Mining Toolkit (EMT) presented in this paper is an offline email archive data mining analysis system that is designed to assist computing models of malicious email behavior for deployment in an online MET system. EMT includes a variety of behavior models for email attachments, user accounts and groups of accounts. Each model computed is used to detect anomalous and errant email behaviors. We report on the set of features implemented in the current version of EMT, and describe tests of the system and our plans for extensions to the set of models. © Springer-Verlag Berlin Heidelberg 2003.
CITATION STYLE
Stolfo, S. J., Hershkop, S., Wang, K., Nimeskern, O., & Hu, C. W. (2003). A behavior-based approach to securing email systems. Lecture Notes in Computer Science (Including Subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), 2776, 57–81. https://doi.org/10.1007/978-3-540-45215-7_5
Mendeley helps you to discover research relevant for your work.