Jan Feyereisl
ToLeRating UR-STD
Feyereisl, Jan; Aickelin, Uwe
Authors
Uwe Aickelin
Abstract
A new emerging paradigm of Uncertain Risk of Suspicion, Threat and Danger, observed across the field of information security, is described. Based on this paradigm a novel approach to anomaly detection is presented. Our approach is based on a simple yet powerful analogy from
the innate part of the human immune system, the Toll-Like Receptors. We argue that such receptors incorporated as part of an anomaly detector enhance the detector’s ability to distinguish normal and anomalous behaviour. In addition we propose that Toll-Like Receptors enable the classification of detected anomalies based on the types of attacks that perpetrate the anomalous behaviour. Classification of such type is either missing in existing literature or is not fit for the purpose of reducing the burden of an administrator of an intrusion detection system. For our model to work, we propose the creation of a taxonomy of the digital Acytota, based on which our receptors are created.
Citation
Feyereisl, J., & Aickelin, U. ToLeRating UR-STD. Presented at 2nd International Conference on Emerging Security Information, Systems and Technologies
Conference Name | 2nd International Conference on Emerging Security Information, Systems and Technologies |
---|---|
End Date | Aug 31, 2008 |
Deposit Date | Nov 20, 2008 |
Peer Reviewed | Peer Reviewed |
Public URL | https://nottingham-repository.worktribe.com/output/1015768 |
Publisher URL | http://ima.ac.uk/papers/feyereisl2008.pdf |
Files
feyereisl2008.pdf
(188 Kb)
PDF