An Adaptive Real-Time Architecture for Zero-Day Threat Detection

@article{Lobato2018AnAR,
  title={An Adaptive Real-Time Architecture for Zero-Day Threat Detection},
  author={A. Lobato and M. A. Lopez and I. J. Sanz and A. C{\'a}rdenas and O. Duarte and G. Pujolle},
  journal={2018 IEEE International Conference on Communications (ICC)},
  year={2018},
  pages={1-6}
}
Attackers create new threats and constantly change their behavior to mislead security systems. In this paper, we propose an adaptive threat detection architecture that trains its detection models in real time. The major contributions of the proposed architecture are: i) gather data about zero-day attacks and attacker behavior using honeypots in the network; ii) process data in real time and achieve high processing throughput through detection schemes implemented with stream processing… Expand
TeMIA-NT: ThrEat Monitoring and Intelligent data Analytics of Network Traffic
A fast unsupervised preprocessing method for network monitoring
Data Processing and Model Selection for Machine Learning-based Network Intrusion Detection
Unknown Attack Detection Based on Zero-Shot Learning
A Lightweight Network-based Android Malware Detection System
...
1
2
...

References

SHOWING 1-10 OF 21 REFERENCES
A Near Real-Time Algorithm for Autonomous Identification and Characterization of Honeypot Attacks
Outside the Closed World: On Using Machine Learning for Network Intrusion Detection
Clustering analysis for malicious network traffic
Detection of known and unknown DDoS attacks using Artificial Neural Networks
Evaluating intrusion detection systems: the 1998 DARPA off-line intrusion detection evaluation
Mining in a data-flow environment: experience in network intrusion detection
A detailed analysis of the KDD CUP 99 data set
...
1
2
3
...