TY  - JOUR
AB  - Nowadays computer and network intrusions have become more common and more complicated, challenging the intrusion detection systems. Also, network traffic has been constantly increasing. As a consequence, the amount of data to be processed by an intrusion detection system has been growing, making it difficult to efficiently detect intrusions online. Proposes an approach for continuous user authentication based on the user’s behaviour, aiming at development of an efficient and portable anomaly intrusion detection system. A prototype of a host‐based intrusion detection system was built. It detects masqueraders by comparing the current user behaviour with his/her stored behavioural model. The model itself is represented by a number of patterns that describe sequential and temporal behavioural regularities of the users. This paper also discusses implementation issues, describes the authors’ solutions, and provides performance results of the prototype.
VL  - 11
IS  - 3
SN  - 0968-5227
DO  - 10.1108/09685220310480426
UR  - https://doi.org/10.1108/09685220310480426
AU  - Seleznyov Alexandr
AU  - Puuronen Seppo
PY  - 2003
Y1  - 2003/01/01
TI  - Using continuous user authentication to detect masqueraders
T2  - Information Management & Computer Security
PB  - MCB UP Ltd
SP  - 139
EP  - 145
Y2  - 2024/09/23
ER  -