Security and Privacy in Communication Networks. 5th International ICST Conference, SecureComm 2009, Athens, Greece, September 14-18, 2009, Revised Selected Papers

Research Article

Ensemble: Community-Based Anomaly Detection for Popular Applications

Download
565 downloads
  • @INPROCEEDINGS{10.1007/978-3-642-05284-2_10,
        author={Feng Qian and Zhiyun Qian and Z. Mao and Atul Prakash},
        title={Ensemble: Community-Based Anomaly Detection for Popular Applications},
        proceedings={Security and Privacy in Communication Networks. 5th International ICST Conference, SecureComm 2009, Athens, Greece, September 14-18, 2009, Revised Selected Papers},
        proceedings_a={SECURECOMM},
        year={2012},
        month={5},
        keywords={},
        doi={10.1007/978-3-642-05284-2_10}
    }
    
  • Feng Qian
    Zhiyun Qian
    Z. Mao
    Atul Prakash
    Year: 2012
    Ensemble: Community-Based Anomaly Detection for Popular Applications
    SECURECOMM
    Springer
    DOI: 10.1007/978-3-642-05284-2_10
Feng Qian1,*, Zhiyun Qian1,*, Z. Mao1,*, Atul Prakash1,*
  • 1: University of Michigan
*Contact email: fengqian@umich.edu, zhiyunq@umich.edu, zmao@umich.edu, aprakash@umich.edu

Abstract

A major challenge in securing end-user systems is the risk of popular applications being hijacked at run-time. Traditional measures do not prevent such threats because the code itself is unmodified and local anomaly detectors are difficult to tune for correct thresholds due to insufficient training data.