TY - JOUR
T1 - Efficient Presentation of Multivariate Audit Data for Intrusion Detection of Web-Based Internet Services
AU - Guo, Zhi
AU - Lam, Kwok Yan
AU - Chung, Siu Leung
AU - Gu, Ming
AU - Sun, Jia Guang
PY - 2003
Y1 - 2003
N2 - This paper presents an efficient implementation technique for presenting multivariate audit data needed by statistical-based intrusion detection systems. Multivariate data analysis is an important tool in statistical intrusion detection systems. Typically, multivariate statistical intrusion detection systems require visualization of the multivariate audit data in order to facilitate close inspection by security administrators during profile creation and intrusion alerts. However, when applying these intrusion detection schemes to web-based Internet applications, the space complexity of the visualization process is usually prohibiting due to the large number of resources managed by the web server. In order for the approach to be adopted effectively in practice, this paper presents an efficient technique that allows manipulation and visualization of a large amount of multivariate data. Experimental results show that our technique greatly reduces the space requirement of the visualization process, thus allowing the approach to be adopted for monitoring web-based Internet applications.
AB - This paper presents an efficient implementation technique for presenting multivariate audit data needed by statistical-based intrusion detection systems. Multivariate data analysis is an important tool in statistical intrusion detection systems. Typically, multivariate statistical intrusion detection systems require visualization of the multivariate audit data in order to facilitate close inspection by security administrators during profile creation and intrusion alerts. However, when applying these intrusion detection schemes to web-based Internet applications, the space complexity of the visualization process is usually prohibiting due to the large number of resources managed by the web server. In order for the approach to be adopted effectively in practice, this paper presents an efficient technique that allows manipulation and visualization of a large amount of multivariate data. Experimental results show that our technique greatly reduces the space requirement of the visualization process, thus allowing the approach to be adopted for monitoring web-based Internet applications.
KW - Data visualization
KW - Intrusion detection
KW - Multivariate data analysis
KW - Network security
UR - http://www.scopus.com/inward/record.url?scp=0242310001&partnerID=8YFLogxK
U2 - 10.1007/978-3-540-45203-4_5
DO - 10.1007/978-3-540-45203-4_5
M3 - Article
AN - SCOPUS:0242310001
SN - 0302-9743
VL - 2846
SP - 63
EP - 75
JO - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
JF - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
ER -