Detecting and Categorizing Kernel-Level Rootkits to Aid Future Detection.
John G. LevineJulian B. GrizzardHenry L. OwenPublished in: IEEE Secur. Priv. (2006)
Keyphrases
- automatic detection
- long term
- anomaly detection
- object detection
- detection algorithm
- false positives
- detecting anomalous
- object recognition
- predicting future
- robust detection
- kernel function
- text categorization
- kernel methods
- region detection
- intrusion detection
- detection rate
- event detection
- similarity function
- false alarms
- levels of abstraction
- detection scheme