Language models for detection of unknown attacks in network traffic.
Konrad RieckPavel LaskovPublished in: J. Comput. Virol. (2007)
Keyphrases
- language model
- network traffic
- normal traffic
- anomaly detection
- traffic analysis
- network traffic data
- language modeling
- intrusion detection
- detecting anomalous
- network attacks
- malicious traffic
- network security
- network intrusions
- intrusion detection system
- document retrieval
- n gram
- probabilistic model
- network intrusion detection
- malicious code
- information retrieval
- language modelling
- query expansion
- network intrusion
- smoothing methods
- test collection
- statistical language models
- traffic data
- retrieval model
- detection mechanism
- worm detection
- internet traffic
- relevance model
- data streams
- ip address
- traffic patterns
- data mining
- spoken term detection