Forecast techniques for predicting increase or decrease of attacks using bayesian inference

Chie Ishida; Yutaka Arakawa; Iwao Sasase; Keisuke Takemori

doi:10.1109/PACRIM.2005.1517323

Forecast techniques for predicting increase or decrease of attacks using bayesian inference

Chie Ishida, Yutaka Arakawa, Iwao Sasase, Keisuke Takemori

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

27 Citations (Scopus)

Abstract

The analysis techniques of intrusion detection system (IDS) events are actively researched, since it is important to understand attack trends and devise countermeasures against incidents. To aim at a quick response in security operation, it is necessary to forecast a fluctuation of attacks. However, there is no approach for predicting the fluctuation of attacks, since the fluctuation of attacks seems to be random. In this paper, we propose forecast techniques for predicting increase or decrease of the attacks by using the Bayesian Inference for calculating the conditional probability based on past-observed event, counts. We consider two algorithms by focusing on an attack cycle and a fluctuation range of the event counts. We implement a forecasting system and evaluate it with real IDS events. As a result, our proposed technique can forecast increase or decrease of the event counts, and be effective to various types of attacks.

Original language	English
Title of host publication	2005 IEEE Pacific RIM Conference on Communications, Computers, and Signal Processing, PACRIM - Proceedings
Pages	450-453
Number of pages	4
DOIs	https://doi.org/10.1109/PACRIM.2005.1517323
Publication status	Published - 2005
Externally published	Yes
Event	2005 IEEE Pacific RIM Conference on Communications, Computers, and Signal Processing, PACRIM - Victoria, BC, Canada Duration: Aug 24 2005 → Aug 26 2005

Publication series

Name	IEEE Pacific RIM Conference on Communications, Computers, and Signal Processing - Proceedings
Volume	2005

Conference

Conference	2005 IEEE Pacific RIM Conference on Communications, Computers, and Signal Processing, PACRIM
Country/Territory	Canada
City	Victoria, BC
Period	8/24/05 → 8/26/05

All Science Journal Classification (ASJC) codes

Signal Processing
Computer Networks and Communications

Access to Document

10.1109/PACRIM.2005.1517323

Cite this

Ishida, C., Arakawa, Y., Sasase, I., & Takemori, K. (2005). Forecast techniques for predicting increase or decrease of attacks using bayesian inference. In 2005 IEEE Pacific RIM Conference on Communications, Computers, and Signal Processing, PACRIM - Proceedings (pp. 450-453). Article 1517323 (IEEE Pacific RIM Conference on Communications, Computers, and Signal Processing - Proceedings; Vol. 2005). https://doi.org/10.1109/PACRIM.2005.1517323

Forecast techniques for predicting increase or decrease of attacks using bayesian inference. / Ishida, Chie; Arakawa, Yutaka; Sasase, Iwao et al.
2005 IEEE Pacific RIM Conference on Communications, Computers, and Signal Processing, PACRIM - Proceedings. 2005. p. 450-453 1517323 (IEEE Pacific RIM Conference on Communications, Computers, and Signal Processing - Proceedings; Vol. 2005).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Ishida, C, Arakawa, Y, Sasase, I & Takemori, K 2005, Forecast techniques for predicting increase or decrease of attacks using bayesian inference. in 2005 IEEE Pacific RIM Conference on Communications, Computers, and Signal Processing, PACRIM - Proceedings., 1517323, IEEE Pacific RIM Conference on Communications, Computers, and Signal Processing - Proceedings, vol. 2005, pp. 450-453, 2005 IEEE Pacific RIM Conference on Communications, Computers, and Signal Processing, PACRIM, Victoria, BC, Canada, 8/24/05. https://doi.org/10.1109/PACRIM.2005.1517323

Ishida C, Arakawa Y, Sasase I, Takemori K. Forecast techniques for predicting increase or decrease of attacks using bayesian inference. In 2005 IEEE Pacific RIM Conference on Communications, Computers, and Signal Processing, PACRIM - Proceedings. 2005. p. 450-453. 1517323. (IEEE Pacific RIM Conference on Communications, Computers, and Signal Processing - Proceedings). doi: 10.1109/PACRIM.2005.1517323

Ishida, Chie ; Arakawa, Yutaka ; Sasase, Iwao et al. / Forecast techniques for predicting increase or decrease of attacks using bayesian inference. 2005 IEEE Pacific RIM Conference on Communications, Computers, and Signal Processing, PACRIM - Proceedings. 2005. pp. 450-453 (IEEE Pacific RIM Conference on Communications, Computers, and Signal Processing - Proceedings).

@inproceedings{cfd4e518866744d99419f6714fce0b65,

title = "Forecast techniques for predicting increase or decrease of attacks using bayesian inference",

abstract = "The analysis techniques of intrusion detection system (IDS) events are actively researched, since it is important to understand attack trends and devise countermeasures against incidents. To aim at a quick response in security operation, it is necessary to forecast a fluctuation of attacks. However, there is no approach for predicting the fluctuation of attacks, since the fluctuation of attacks seems to be random. In this paper, we propose forecast techniques for predicting increase or decrease of the attacks by using the Bayesian Inference for calculating the conditional probability based on past-observed event, counts. We consider two algorithms by focusing on an attack cycle and a fluctuation range of the event counts. We implement a forecasting system and evaluate it with real IDS events. As a result, our proposed technique can forecast increase or decrease of the event counts, and be effective to various types of attacks.",

author = "Chie Ishida and Yutaka Arakawa and Iwao Sasase and Keisuke Takemori",

year = "2005",

doi = "10.1109/PACRIM.2005.1517323",

language = "English",

isbn = "0780391950",

series = "IEEE Pacific RIM Conference on Communications, Computers, and Signal Processing - Proceedings",

pages = "450--453",

booktitle = "2005 IEEE Pacific RIM Conference on Communications, Computers, and Signal Processing, PACRIM - Proceedings",

note = "2005 IEEE Pacific RIM Conference on Communications, Computers, and Signal Processing, PACRIM ; Conference date: 24-08-2005 Through 26-08-2005",

}

TY - GEN

T1 - Forecast techniques for predicting increase or decrease of attacks using bayesian inference

AU - Ishida, Chie

AU - Arakawa, Yutaka

AU - Sasase, Iwao

AU - Takemori, Keisuke

PY - 2005

Y1 - 2005

N2 - The analysis techniques of intrusion detection system (IDS) events are actively researched, since it is important to understand attack trends and devise countermeasures against incidents. To aim at a quick response in security operation, it is necessary to forecast a fluctuation of attacks. However, there is no approach for predicting the fluctuation of attacks, since the fluctuation of attacks seems to be random. In this paper, we propose forecast techniques for predicting increase or decrease of the attacks by using the Bayesian Inference for calculating the conditional probability based on past-observed event, counts. We consider two algorithms by focusing on an attack cycle and a fluctuation range of the event counts. We implement a forecasting system and evaluate it with real IDS events. As a result, our proposed technique can forecast increase or decrease of the event counts, and be effective to various types of attacks.

AB - The analysis techniques of intrusion detection system (IDS) events are actively researched, since it is important to understand attack trends and devise countermeasures against incidents. To aim at a quick response in security operation, it is necessary to forecast a fluctuation of attacks. However, there is no approach for predicting the fluctuation of attacks, since the fluctuation of attacks seems to be random. In this paper, we propose forecast techniques for predicting increase or decrease of the attacks by using the Bayesian Inference for calculating the conditional probability based on past-observed event, counts. We consider two algorithms by focusing on an attack cycle and a fluctuation range of the event counts. We implement a forecasting system and evaluate it with real IDS events. As a result, our proposed technique can forecast increase or decrease of the event counts, and be effective to various types of attacks.

UR - http://www.scopus.com/inward/record.url?scp=33746813204&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=33746813204&partnerID=8YFLogxK

U2 - 10.1109/PACRIM.2005.1517323

DO - 10.1109/PACRIM.2005.1517323

M3 - Conference contribution

AN - SCOPUS:33746813204

SN - 0780391950

SN - 9780780391956

T3 - IEEE Pacific RIM Conference on Communications, Computers, and Signal Processing - Proceedings

SP - 450

EP - 453

BT - 2005 IEEE Pacific RIM Conference on Communications, Computers, and Signal Processing, PACRIM - Proceedings

T2 - 2005 IEEE Pacific RIM Conference on Communications, Computers, and Signal Processing, PACRIM

Y2 - 24 August 2005 through 26 August 2005

ER -

Forecast techniques for predicting increase or decrease of attacks using bayesian inference

Abstract

Publication series

Conference

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this