Automated Caching of Behavioral Patterns for Efficient Run-Time Monitoring

Indiana University-Purdue University, Indianapolis, USA September 29-October 01

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/DASC.2006.23

2nd IEEE International Symposium on D ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Natalia Stakhanova Articles by Samik Basu Articles by Robyn R. Lutz Articles by Johnny Wong

	ASCII Text	x
	Natalia Stakhanova, Samik Basu, Robyn R. Lutz, Johnny Wong, "Automated Caching of Behavioral Patterns for Efficient Run-Time Monitoring," Dependable, Autonomic and Secure Computing, IEEE International Symposium on, pp. 333-340, 2nd IEEE International Symposium on Dependable, Autonomic and Secure Computing (DASC'06), 2006.

	BibTex	x
	@article{ 10.1109/DASC.2006.23, author = {Natalia Stakhanova and Samik Basu and Robyn R. Lutz and Johnny Wong}, title = {Automated Caching of Behavioral Patterns for Efficient Run-Time Monitoring}, journal ={Dependable, Autonomic and Secure Computing, IEEE International Symposium on}, volume = {0}, year = {2006}, isbn = {0-7695-2539-3}, pages = {333-340}, doi = {http://doi.ieeecomputersociety.org/10.1109/DASC.2006.23}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Dependable, Autonomic and Secure Computing, IEEE International Symposium on TI - Automated Caching of Behavioral Patterns for Efficient Run-Time Monitoring SN - 0-7695-2539-3 SP333 EP340 A1 - Natalia Stakhanova, A1 - Samik Basu, A1 - Robyn R. Lutz, A1 - Johnny Wong, PY - 2006 KW - null VL - 0 JA - Dependable, Autonomic and Secure Computing, IEEE International Symposium on ER -

Natalia Stakhanova, Iowa State University, USA

Samik Basu, Iowa State University, USA

Robyn R. Lutz, Iowa State University, USA

Johnny Wong, Iowa State University, USA

Run-time monitoring is a powerful approach for dynamically detecting faults or malicious activity of software systems. However, there are often two obstacles to the implementation of this approach in practice: (1) that developing correct and/or faulty behavioral patterns can be a difficult, labor-intensive process, and (2) that use of such pattern-monitoring must provide rapid turn-around or response time. We present a novel data structure, called extended action graph, and associated algorithms to overcome these drawbacks. At its core, our technique relies on effectively identifying and caching specifications from (correct/faulty) patterns learned via machine-learning algorithm. We describe the design and implementation of our technique and show its practical applicability in the domain of security monitoring of sendmail software.

Citation:

Natalia Stakhanova, Samik Basu, Robyn R. Lutz, Johnny Wong, "Automated Caching of Behavioral Patterns for Efficient Run-Time Monitoring," dasc, pp.333-340, 2nd IEEE International Symposium on Dependable, Autonomic and Secure Computing (DASC'06), 2006

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.