In-situ trainable intrusion detection system

Symons, Christopher T.; Beaver, Justin M.; Gillen, Rob; Potok, Thomas E.

Title: In-situ trainable intrusion detection system

Patent · Tue Nov 15 00:00:00 EST 2016

OSTI ID:1332095

Symons, Christopher T.; Beaver, Justin M.; Gillen, Rob; Potok, Thomas E.

A computer implemented method detects intrusions using a computer by analyzing network traffic. The method includes a semi-supervised learning module connected to a network node. The learning module uses labeled and unlabeled data to train a semi-supervised machine learning sensor. The method records events that include a feature set made up of unauthorized intrusions and benign computer requests. The method identifies at least some of the benign computer requests that occur during the recording of the events while treating the remainder of the data as unlabeled. The method trains the semi-supervised learning module at the network node in-situ, such that the semi-supervised learning modules may identify malicious traffic without relying on specific rules, signatures, or anomaly detection.

View Patent

Cite

Export

Save

Research Organization:: Oak Ridge National Laboratory (ORNL), Oak Ridge, TN (United States)

Sponsoring Organization:: USDOE

DOE Contract Number:: AC05-00OR22725

Assignee:: UT-Battelle, LLC (Oak Ridge, TN)

Patent Number(s):: 9,497,204

Application Number:: 14/468,000

OSTI ID:: 1332095

Resource Relation:: Patent File Date: 2014 Aug 25

Country of Publication:: United States

Language:: English

References (6)

Computer intrusion detection system and method based on application monitoring Ghosh, Anup K.; Schatz, Michael; Michael, Christoph C. https://doi.org/https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/7181768 US Patent Document 7,181,768	patent	February 2007
System for intrusion detection and vulnerability assessment in a computer network using simulation and machine learning Benjamin, Paul https://doi.org/https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/7784099 US Patent Document 7,784,099	patent	August 2010
Semi-supervised learning based on semiparametric regularization Guo, Zhen; Zhang, Zhongfei https://doi.org/https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/8527432 US Patent Document 8,527,432	patent	September 2013
Anomaly detection system for enterprise network security Lin, Derek https://doi.org/https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/9112895 US Patent Document 9,112,895	patent	August 2015
Method and system for anomaly detection using a collective set of unsupervised machine-learning algorithms Lim, Keng Leng Albert https://doi.org/https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20070289013 US Patent Application 11/449533; 20070289013	patent-application	December 2007
Method and Apparatus for Automatic Online Detection and Classification of Anomalous Objects in a Data Stream Muller, Klaus-Robert; Laskov, Pavel; Tax, David https://doi.org/https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20080201278 US Patent Application 10/568217; 20080201278	patent-application	August 2008

Similar Records

HPNAIDM: The High-Performance Network Anomaly/Intrusion Detection and Mitigation System

Technical Report · Thu Dec 05 00:00:00 EST 2013 · OSTI ID:1332095

Chen, Yan

Profile-based adaptive anomaly detection for network security.

Technical Report · Tue Nov 01 00:00:00 EST 2005 · OSTI ID:1332095

Zhang, Pengchu C; Durgin, Nancy Ann

Network Anomaly Detection Using Federated Learning

Conference · Mon Nov 28 00:00:00 EST 2022 · MILCOM 2022 - 2022 IEEE Military Communications Conference (MILCOM) · OSTI ID:1332095

Marfo, William; Tosh, Deepak K.; Moore, Shirley V.

Related Subjects

97 MATHEMATICS AND COMPUTING
99 GENERAL AND MISCELLANEOUS

Title: In-situ trainable intrusion detection system

Citation Formats

References (6)

Similar Records

Related Subjects