Anomaly detection system using resource pattern learning

Yuki Ohno, Midori Sugaya, Andrej Van Der Zee, Tatsuo Nakajima

研究成果: Conference contribution

3 引用 (Scopus)

抜粋

In this paper, Anomaly Detection by Resource Monitoring (Ayaka), a novel lightweight anomaly and fault detection infrastructure, is presented for Information Appliances. Ayaka provides a general monitoring method for detecting anomalies using only resource usage information on systems independent of its domain, target application and programming languages. Ayaka modifies the kernel to detect faults and uses a completely application black-box approach based on machine learning methods. It uses the clustering method to quantize the resource usage vector data and learn the normal patterns with Hidden Markov Model. In the running phase, Ayaka finds anomalies by comparing the application resource usage with learned model. The evaluation experiment indicates that our prototype system is able to detect anomalies, such as SQL injection and buffer overrun, without significant overheads.

元の言語English
ホスト出版物のタイトルProceedings - 1st International Workshop on Software Technologies for Future Dependable Distributed Systems, STFSSD 2009
ページ38-42
ページ数5
DOI
出版物ステータスPublished - 2009 12 1
外部発表Yes
イベント1st International Workshop on Software Technologies for Future Dependable Distributed Systems, STFSSD 2009 - Tokyo, Japan
継続期間: 2009 3 172009 3 18

出版物シリーズ

名前Proceedings - 1st International Workshop on Software Technologies for Future Dependable Distributed Systems, STFSSD 2009

Conference

Conference1st International Workshop on Software Technologies for Future Dependable Distributed Systems, STFSSD 2009
Japan
Tokyo
期間09/3/1709/3/18

ASJC Scopus subject areas

  • Hardware and Architecture
  • Information Systems

フィンガープリント Anomaly detection system using resource pattern learning' の研究トピックを掘り下げます。これらはともに一意のフィンガープリントを構成します。

  • これを引用

    Ohno, Y., Sugaya, M., Van Der Zee, A., & Nakajima, T. (2009). Anomaly detection system using resource pattern learning. : Proceedings - 1st International Workshop on Software Technologies for Future Dependable Distributed Systems, STFSSD 2009 (pp. 38-42). [4804569] (Proceedings - 1st International Workshop on Software Technologies for Future Dependable Distributed Systems, STFSSD 2009). https://doi.org/10.1109/STFSSD.2009.41