Focus on IDS
Re: Re: Snort with an expert system Jun 22 2009 07:47PM
tol sics se (1 replies)
Hi,

Coming late into this conversation, but what about using statistical learning filtering instead of an expert system? We have done it using an anomaly detection algorithm we have developed:

http://eprints.sics.se/3591/

(link to paper https://daisy.dsv.su.se/fil/visa?id=24833)

/Tomas

http://www.sics.se

[ reply ]
Re: Snort with an expert system Jun 25 2009 08:45AM
Stefano Zanero (s zanero securenetwork it) (1 replies)
Re: Snort with an expert system Jun 25 2009 09:08AM
Tomas Olsson (tol sics se) (1 replies)
Re: Snort with an expert system Jun 25 2009 09:48AM
Stefano Zanero (s zanero securenetwork it) (1 replies)
Re: Snort with an expert system Jun 25 2009 10:19AM
Tomas Olsson (tol sics se) (1 replies)
Re: Snort with an expert system Jun 25 2009 10:26AM
Stefano Zanero (s zanero securenetwork it) (1 replies)
Re: Snort with an expert system Jun 26 2009 12:18AM
Gary Halleen (ghalleen cisco com) (1 replies)
Re: Snort with an expert system Jun 26 2009 07:30PM
Stuart Staniford (sstaniford FireEye com) (1 replies)
Re: Snort with an expert system Jun 26 2009 09:18PM
Gary Halleen (ghalleen cisco com)


 

Privacy Statement
Copyright 2010, SecurityFocus