Abstract:The method for attack detection based on Granger Causality Test(GCT) within the framework of temporal data mining was investigated. Through computing causality between a lot of precursors from input time series and a given anomaly from output time series, the method can be used to detect the precursor from datasets containing multivariate time series related to different security regimes of network system, and then produces the precursor rules and causality rules for actual attack detection and early warning with high confidence. Several experiments were conducted to verify the accuracy and precision of the proposed method, and finally its application analysis in attack detection and early warning prototype system was presented.
汪生,孙乐昌,干国政. Granger因果关系检验在攻击检测中的应用研究[J]. 计算机应用, 2005, 25(06): 1282-1285.
WANG Sheng,SUN Le-chang,GAN Guo-zheng. Application research based on Granger causality test for attack detection. Journal of Computer Applications, 2005, 25(06): 1282-1285.