A Method to Automatically Filter Log Evidences for Intrusion Forensics.
Jian ZhangXiao FuXiaojiang DuBin LuoZhihong ZhaoPublished in: ICDCS Workshops (2013)
Keyphrases
- synthetic data
- completely automatic
- detection method
- high accuracy
- pairwise
- computational cost
- dynamic programming
- experimental evaluation
- clustering method
- cost function
- significant improvement
- segmentation method
- probabilistic model
- anomaly detection
- classification method
- high precision
- document analysis
- decision trees