HMM-Based Detection Method for Misuse of Resource in Information Systems

FONT face; Verdana; WANG Chao; GUO Yuanbo; MA Jianfeng; PEI Qingqi; XU Dong; FONT

您当前的位置：

首页 >

文章列表页 >

HMM-Based Detection Method for Misuse of Resource in Information Systems

更新时间：2025-07-16

- HMM-Based Detection Method for Misuse of Resource in Information Systems
- Acta Electronica Sinica Vol. 38, Issue 6, Pages: 1383-1388(2010)
- 作者机构：
- 作者简介：
- 基金信息：
- DOI：
  CLC： TP309.2
- Published：2010
- 稿件说明：
移动端阅览
FONT face, Verdana, WANG Chao, et al. HMM-Based Detection Method for Misuse of Resource in Information Systems[J]. Acta Electronica Sinica, 2010, 38(6): 1383-1388.
DOI：

FONT face, Verdana, WANG Chao, et al. HMM-Based Detection Method for Misuse of Resource in Information Systems[J]. Acta Electronica Sinica, 2010, 38(6): 1383-1388. DOI：

摘要

<FONT face=Verdana>针对信息系统中内部人员的资源滥用行为

已有的检测方法要么不能有效检测新的资源滥用行为

要么需要获得资源滥用行为的先验知识

因而这些检测方法在应用中严重限. 本文提出了一种基于隐马尔可夫模型(HMM)的内部人员资源滥用行为检测方法. 该模型以信息系统的敏感文件夹作为模型的状态

以用户的事务处理操作作为观测符号

采用Baum-Welch算法确定模型参数; 基于该模型建立内部人员访问行为的HMM模型

并用于资源滥用行为检测. 仿真结果表明了该检测方法的有效性.

Abstract

<FONT face=Verdana>The existing methods for misuse detection of information systems are restricted because of their own limitations

such as unable to detect new kinds of misuse and need the knowledge of potential misuses. A hidden Markov model (HMM) based method is presented to detect the misuse of resource in information systems. In the HMM model

the file folders containing sensitive information are taken as the model states and the user operations as the model observation symbols. Baum-Welch algorithm is adopted to determine the model parameters. The behavioristic profiles of the insiders are determined by the HMM model and used to detect malicious actions. The simulation results show the effectiveness and adaptability of our method.

关键词

Keywords

references

Views

1321

下载量

CSCD

Alert me when the article has been cited

提交

Tools

Publicity Resources

A Novel Keyword Verification Algorithm

Understanding Genome from Information System Point of View

Hierarchical Structure Design and Application for Online Monitoring Information System

Related Author

DAI Hai-sheng

ZHU Xiao-yan

LUO Yu-pin

YANG Shi-yuan

LI Yan-da

WU Zhi-peng

YANG Ping

JIANG Xin-yu

Related Institution

清华大学自动化系

清华大学计算机系

清华大学自动化系北京

清华大学计算机系北京

Bioinformatics Institute, Tsinghua University, State Key Laboratory of Intelligent Technology and System

⁰