Combining static analysis and dynamic learning to build accurate intrusion detection models

@article{Liu2005CombiningSA,
  title={Combining static analysis and dynamic learning to build accurate intrusion detection models},
  author={Zhen Liu and Susan M. Bridges and Rayford B. Vaughn},
  journal={Third IEEE International Workshop on Information Assurance (IWIA'05)},
  year={2005},
  pages={164-177}
}
Anomaly detection based on monitoring of sequences of system calls has been shown to be an effective method for detection of previously unseen, potentially damaging attacks on hosts. This paper presents a new model for profiling normal program behavior for use in detection of intrusions that change application execution flow. This model is compact and efficient to operate and can be acquired using a combination of static analysis and dynamic learning. Our model (hybrid push down automata, HPDA… CONTINUE READING
Highly Cited
This paper has 18 citations. REVIEW CITATIONS