Anomaly Detection on User Terminals Based on Outbound Traffic Filtering by DNS Query Monitoring and Application Program Identification.
Yong JinMasahiko TomoishiNariyoshi YamaiPublished in: ICHMI (2021)
Keyphrases
- anomaly detection
- network traffic
- detect anomalies
- intrusion detection
- user queries
- relevance feedback
- network intrusion detection
- intrusion detection system
- detecting anomalies
- query processing
- negative selection algorithm
- anomalous behavior
- one class support vector machines
- normal behavior
- data sets
- unsupervised learning
- network anomaly detection
- detecting anomalous
- cumulative sum
- network security
- malware detection
- computer networks
- text classification
- decision trees