Anomaly Detection as a Service [electronic resource] : Challenges, Advances, and Opportunities / by Danfeng (Daphne) Yao, Xiaokui Shu, Long Cheng, Salvatore J. Stolfo.
By: Yao, Danfeng (Daphne) [author.].
Contributor(s): Shu, Xiaokui [author.] | Cheng, Long [author.] | Stolfo, Salvatore J [author.] | SpringerLink (Online service).
Material type: BookSeries: Synthesis Lectures on Information Security, Privacy, and Trust: Publisher: Cham : Springer International Publishing : Imprint: Springer, 2018Edition: 1st ed. 2018.Description: XV, 157 p. online resource.Content type: text Media type: computer Carrier type: online resourceISBN: 9783031023545.Subject(s): Data protection | Data and Information SecurityAdditional physical formats: Printed edition:: No title; Printed edition:: No title; Printed edition:: No titleDDC classification: 005.8 Online resources: Click here to access onlinePreface -- Acknowledgments -- Introduction -- Threat Models -- Local vs. Global Program Anomaly Detection -- Program Analysis in Data-driven Anomaly Detection -- Anomaly Detection in Cyber-Physical Systems -- Anomaly Detection on Network Traffic -- Automation and Evaluation for Anomaly Detection Deployment -- Anomaly Detection from the Industry's Perspective -- Exciting New Problems and Opportunities -- Bibliography -- Authors' Biographies -- Index.
Anomaly detection has been a long-standing security approach with versatile applications, ranging from securing server programs in critical environments, to detecting insider threats in enterprises, to anti-abuse detection for online social networks. Despite the seemingly diverse application domains, anomaly detection solutions share similar technical challenges, such as how to accurately recognize various normal patterns, how to reduce false alarms, how to adapt to concept drifts, and how to minimize performance impact. They also share similar detection approaches and evaluation methods, such as feature extraction, dimension reduction, and experimental evaluation. The main purpose of this book is to help advance the real-world adoption and deployment anomaly detection technologies, by systematizing the body of existing knowledge on anomaly detection. This book is focused on data-driven anomaly detection for software, systems, and networks against advanced exploits and attacks, but also touches on a number of applications, including fraud detection and insider threats. We explain the key technical components in anomaly detection workflows, give in-depth description of the state-of-the-art data-driven anomaly-based security solutions, and more importantly, point out promising new research directions. This book emphasizes on the need and challenges for deploying service-oriented anomaly detection in practice, where clients can outsource the detection to dedicated security providers and enjoy the protection without tending to the intricate details.
There are no comments for this item.