Worm Detection at Network Endpoints Using Information-Theoretic Traffic Perturbations.
Syed A. KhayamHayder RadhaDmitri LoguinovPublished in: ICC (2008)
Keyphrases
- information theoretic
- worm detection
- endpoints
- false alarms
- intrusion detection
- information theory
- mutual information
- network traffic
- theoretic framework
- traffic analysis
- false positive and false negative
- information theoretic measures
- information bottleneck
- entropy measure
- jensen shannon divergence
- relative entropy
- false positives
- kl divergence
- internet traffic
- machine learning
- transportation networks
- network security
- kullback leibler divergence
- network resources
- line segments
- malicious traffic
- distributional clustering