An Anomaly Intrusion Detection Method Based on PageRank Algorithm

“…The graph will have weights on the edges, in order to represent the importance of transitions between system calls. In this sense, the graph will be similar to the graph used in other previous works that use the system calls graph technique [2].…”

“…A different approach to the previous ones models the applications behavior using system calls graphs [2]. This work uses the PageRank algorithm to calculate the weights of the graph edges and the Hamming distance weighted by the weights.…”

“…The previous architecture shows that the first stage of the proposed model consists of the following three modules: STIDE [1], text classification [32] and system calls graphs with weights on the edges [2]. We chose STIDE because it is the first technique that used application system calls as input to the system and because it is one of the most widely used techniques in many research papers.…”

“…Although application-level intrusion detection systems (IDS) based on the use of system calls are relatively old [1], there has been a significant increase in the number of research papers using system calls to detect intrusions in recent times [2]- [4].…”

“…The basic idea is that an attack will generate a different system calls graph and, therefore, the attack can be detected. Based on the system calls graph technique, there are studies that take into account the importance of the edges of the graph, which represent transitions between system calls of the application [2].…”

Intrusion Detection System Based on Integrated System Calls Graph and Neural Networks

“…The graph will have weights on the edges, in order to represent the importance of transitions between system calls. In this sense, the graph will be similar to the graph used in other previous works that use the system calls graph technique [2].…”

“…A different approach to the previous ones models the applications behavior using system calls graphs [2]. This work uses the PageRank algorithm to calculate the weights of the graph edges and the Hamming distance weighted by the weights.…”

“…The previous architecture shows that the first stage of the proposed model consists of the following three modules: STIDE [1], text classification [32] and system calls graphs with weights on the edges [2]. We chose STIDE because it is the first technique that used application system calls as input to the system and because it is one of the most widely used techniques in many research papers.…”

“…Although application-level intrusion detection systems (IDS) based on the use of system calls are relatively old [1], there has been a significant increase in the number of research papers using system calls to detect intrusions in recent times [2]- [4].…”

“…The basic idea is that an attack will generate a different system calls graph and, therefore, the attack can be detected. Based on the system calls graph technique, there are studies that take into account the importance of the edges of the graph, which represent transitions between system calls of the application [2].…”

Intrusion Detection System Based on Integrated System Calls Graph and Neural Networks

Exploring Structure Oriented Feature Tag Weighting Algorithm for Web Documents Identification

Certain Strategic Study on Machine Learning-Based Graph Anomaly Detection