Detecting cyber-attacks using a CRPS-based monitoring approach

Fouzi Harrou, Benamar Bouyeddou, Ying Sun, Benamar Kadri

Research output: Chapter in Book/Report/Conference proceedingConference contribution

7 Scopus citations

Abstract

Cyber-attacks can seriously affect the security of computers and network systems. Thus, developing an efficient anomaly detection mechanism is crucial for information protection and cyber security. To accurately detect TCP SYN flood attacks, two statistical schemes based on the continuous ranked probability score (CRPS) metric have been designed in this paper. Specifically, by integrating the CRPS measure with two conventional charts, Shewhart and the exponentially weighted moving average (EWMA) charts, novel anomaly detection strategies were developed: CRPS-Shewhart and CRPS-EWMA. The efficiency of the proposed methods has been verified using the 1999 DARPA intrusion detection evaluation datasets.
Original languageEnglish (US)
Title of host publication2018 IEEE Symposium Series on Computational Intelligence (SSCI)
PublisherInstitute of Electrical and Electronics Engineers (IEEE)
Pages618-622
Number of pages5
ISBN (Print)9781538692769
DOIs
StatePublished - Feb 28 2019

Fingerprint

Dive into the research topics of 'Detecting cyber-attacks using a CRPS-based monitoring approach'. Together they form a unique fingerprint.

Cite this