Log File Analysis with Context-Free GrammarsReportar como inadecuado

Log File Analysis with Context-Free Grammars - Descarga este documento en PDF. Documentación en PDF para descargar gratis. Disponible también para leer online.

1 University of Pretoria South Africa

Abstract : Classical intrusion analysis of network log files uses statistical machine learning or regular expressions. Where statistically machine learning methods are not analytically exact, methods based on regular expressions do not reach up very far in Chomsky’s hierarchy of languages. This paper focuses on parsing traces of network traffic using context-free grammars. -Green grammars- are used to describe acceptable log files while -red grammars- are used to represent known intrusion patterns. This technique can complement or augment existing approaches by providing additional precision. Analytically, the technique is also more powerful than existing techniques that use regular expressions.

Keywords : Intrusion detection log file analysis context-free grammars

Autor: Gregory Bosman - Stefan Gruner -

Fuente: https://hal.archives-ouvertes.fr/


Documentos relacionados