Detecting zero-day attacks using context-aware anomaly detection at the application-layer

International Journal of Information Security ◽

10.1007/s10207-016-0344-y ◽

2016 ◽

Vol 16 (5) ◽

pp. 475-490 ◽

Author(s):

Patrick Duessel ◽

Christian Gehl ◽

Ulrich Flegel ◽

Sven Dietrich ◽

Michael Meier

Keyword(s):

Anomaly Detection ◽

Context Aware ◽

Application Layer

Download Full-text

Anomaly detection in Context-aware Feature Models

15th International Working Conference on Variability Modelling of Software-Intensive Systems ◽

10.1145/3442391.3442405 ◽

2021 ◽

Author(s):

Jacopo Mauro

Keyword(s):

Anomaly Detection ◽

Context Aware ◽

Download Full-text

Anomaly Detection for Application Layer User Browsing Behavior Based on Attributes and Features

Journal of Physics Conference Series ◽

10.1088/1742-6596/1069/1/012072 ◽

2018 ◽

Vol 1069 ◽

pp. 012072 ◽

Author(s):

Xiong Luo ◽

Xiaoqiang Di ◽

Xu Liu ◽

Hui Qi ◽

Jinqing Li ◽

...

Keyword(s):

Anomaly Detection ◽

Application Layer ◽

Behavior Based ◽

Browsing Behavior

Download Full-text

Context-Aware Anomaly Detection in Embedded Systems

Advances in Dependability Engineering of Complex Systems - Advances in Intelligent Systems and Computing ◽

10.1007/978-3-319-59415-6_15 ◽

2017 ◽

pp. 151-165 ◽

Author(s):

Fatemeh Ehsani-Besheli ◽

Hamid R. Zarandi

Keyword(s):

Embedded Systems ◽

Anomaly Detection ◽

Download Full-text

AutoGuard: A Dual Intelligence Proactive Anomaly Detection at Application-Layer in 5G Networks

10.1007/978-3-030-88418-5_34 ◽

2021 ◽

pp. 715-735

Author(s):

Taous Madi ◽

Hyame Assem Alameddine ◽

Makan Pourzandi ◽

Amine Boukhtouta ◽

Moataz Shoukry ◽

...

Keyword(s):

Anomaly Detection ◽

Application Layer ◽

Download Full-text

Interactive Context-Aware Anomaly Detection Guided by User Feedback

IEEE Transactions on Human-Machine Systems ◽

10.1109/thms.2019.2925195 ◽

2019 ◽

Vol 49 (6) ◽

pp. 550-559 ◽

Author(s):

Yang Shi ◽

Maoran Xu ◽

Rongwen Zhao ◽

Hao Fu ◽

Tongshuang Wu ◽

...

Keyword(s):

Anomaly Detection ◽

User Feedback ◽

Download Full-text

Context-aware security framework based on Traffic Anomaly Detection Indicator

Telecommunication Systems ◽

10.1007/s11235-016-0233-8 ◽

2016 ◽

Vol 65 (2) ◽

pp. 319-330 ◽

Author(s):

Antonio Cuadra ◽

Javier Aracil

Keyword(s):

Anomaly Detection ◽

Context Aware ◽

Security Framework ◽

Traffic Anomaly ◽

Traffic Anomaly Detection

Download Full-text

Context-Aware Activity Recognition and Anomaly Detection in Video

IEEE Journal of Selected Topics in Signal Processing ◽

10.1109/jstsp.2012.2234722 ◽

2013 ◽

Vol 7 (1) ◽

pp. 91-101 ◽

Author(s):

Yingying Zhu ◽

Nandita M. Nayak ◽

Amit K. Roy-Chowdhury

Keyword(s):

Anomaly Detection ◽

Activity Recognition ◽

Download Full-text

Application-Layer Context-Aware Services for Pervasive Computing Environments

First International Conference on Innovative Computing, Information and Control - Volume I (ICICIC'06) ◽

10.1109/icicic.2006.423 ◽

2006 ◽

Author(s):

Hsu-Yang Kung ◽

Ching-Yu Lin

Keyword(s):

Pervasive Computing ◽

Context Aware ◽

Application Layer ◽

Computing Environments

Download Full-text

Anomaly Detection and Explanation in Context-Aware Software Product Lines

Proceedings of the 21st International Systems and Software Product Line Conference - Volume B on ZZZ - SPLC '17 ◽

10.1145/3109729.3109752 ◽

2017 ◽

Author(s):

Jacopo Mauro ◽

Michael Nieke ◽

Christoph Seidl ◽

Ingrid Chieh Yu

Keyword(s):

Anomaly Detection ◽

Software Product Lines ◽

Context Aware ◽

Product Lines ◽

Software Product

Download Full-text

Detecting Application-Layer Attacks Based on Hidden Semi-Markov Models

Applied Mechanics and Materials ◽

10.4028/www.scientific.net/amm.631-632.923 ◽

2014 ◽

Vol 631-632 ◽

pp. 923-927

Author(s):

Bai Lin Xie ◽

Qian Sheng Zhang

Keyword(s):

Anomaly Detection ◽

Markov Models ◽

Attack Detection ◽

Detection Accuracy ◽

Application Layer ◽

Arrival Times ◽

Positive Ratio ◽

False Positive Ratio ◽

Theory Application ◽

Application Layer Protocol

This paper presents an application-layer attack detection method based on hidden semi-markov models. In this method, the keywords of an application-layer protocol and their inter-arrival times are used as the observations, a hidden semi-markov model is used to describe the application-layer behaviors of a normal user who is using some application-layer protocol. This method is also based anomaly detection. In theory, application-layer anomaly detection can identify the known, unknown and novel attacks happened on application-layer. The experimental results show that this method can identify several application-layer attacks, and has high detection accuracy and low false positive ratio.

Download Full-text