An inference system for detecting firewall filtering rules anomalies.
Tarek AbbesAdel BouhoulaMichaël RusinowitchPublished in: SAC (2008)
Keyphrases
- anomaly detection
- detecting anomalies
- rule sets
- intrusion detection system
- rule extraction
- filtering algorithm
- real time
- decision rules
- neural network
- misuse detection
- rule discovery
- image filtering
- network security
- bayesian networks
- association rules
- background knowledge
- human experts
- intrusion detection
- post processing
- security enforcement
- anomalous behavior
- filtering process
- root cause
- knowledge acquisition
- active databases
- rule induction
- median filter
- information filtering
- classification rules
- automatic detection