A General and Expandable Insider Threat Detection System Using Baseline Anomaly Detection and Scenario-Driven Alarm Filters.
Guang YangLijun CaiAimin YuDan MengPublished in: TrustCom/BigDataSE (2018)
Keyphrases
- anomaly detection
- intrusion detection
- detecting anomalies
- anomalous behavior
- network intrusion detection
- detecting anomalous
- intrusion detection system
- network traffic
- detect anomalies
- insider threat
- one class support vector machines
- malicious activities
- real world
- network anomaly detection
- normal behavior
- network security
- monitoring system
- unsupervised learning
- negative selection algorithm
- hidden markov models
- feature selection