Sergey Bratus and Joshua Brody and David Kotz and Anna Shubina. Streaming Estimation of Information-theoretic Metrics for Anomaly Detection (Extended Abstract). In Proceedings of the 11th International Symposium on Recent Advances in Intrusion Detection-- Posters, Cambridge, MA, September, 2008. Springer-Verlag. Accepted for publication.

Abstract: Information-theoretic metrics hold great promise for modeling traffic and detecting anomalies if only they could be computed in an efficient, scalable ways. Recent advances in streaming estimation algorithms give hope that such computations can be made practical. We describe our work in progress that aims to use streaming entropy esimation algorithms on 802.11a/b/g link layer (and above) features and feature pairs to detect anomalies.

Keywords: wireless network, Wi-Fi, 802.11, intrusion detection, anomaly detection, information theory, dfk

BibTeX

No online copy available.

Copyright © 2008 by Springer.