TY - GEN
T1 - A self-organizing map and its modeling for discovering malignant network traffic
AU - Langin, Chet
AU - Zhou, Hongbo
AU - Rahimi, Shahram
AU - Gupta, Bidyut
AU - Zargham, Mehdi
AU - Sayeh, Mohammad R.
PY - 2009
Y1 - 2009
N2 - Model-based intrusion detection and knowledge discovery are combined to cluster and classify P2P botnet traffic and other malignant network activity by using a Self-Organizing Map (SOM) self-trained on denied Internet firewall log entries. The SOM analyzed new firewall log entries in a case study to classify similar network activity, and discovered previously unknown local P2P bot traffic and other security issues.
AB - Model-based intrusion detection and knowledge discovery are combined to cluster and classify P2P botnet traffic and other malignant network activity by using a Self-Organizing Map (SOM) self-trained on denied Internet firewall log entries. The SOM analyzed new firewall log entries in a case study to classify similar network activity, and discovered previously unknown local P2P bot traffic and other security issues.
UR - http://www.scopus.com/inward/record.url?scp=67650462942&partnerID=8YFLogxK
U2 - 10.1109/CICYBS.2009.4925099
DO - 10.1109/CICYBS.2009.4925099
M3 - Conference contribution
AN - SCOPUS:67650462942
SN - 9781424427697
T3 - 2009 IEEE Symposium on Computational Intelligence in Cyber Security, CICS 2009 - Proceedings
BT - 2009 IEEE Symposium on Computational Intelligence in Cyber Security, CICS 2009 - Proceedings
T2 - 2009 IEEE Symposium on Computational Intelligence in Cyber Security, CICS 2009
Y2 - 30 March 2009 through 2 April 2009
ER -