|
|
计算机应用研究 2005
Markov Chain Model of Syscall-based Intrusion Detection
|
Abstract:
Presents a Markov chain based method to characterize process based on syscall sequences for intrusion detection,and demonstrates its feasibility and validity through experiments. Our experiment results reveal better intrusion detection per-formance of the first-order Markov Model than that of the second-order Markov model.
