PAPERS
BEST PAPER


The ICoFCS Committee chose the paper "Improved Blind Automatic Malicious Activity Detection in Honeypot Data" as the best paper of the this year conference.

The paper was written by Joăo Paulo C. L da Costa, Edison Pignaton de Freitas, Bernardo Machado David,  Antonio Manuel Rubio Serrano, Dino Amaral, and Rafael Timóteo de Sousa Júnior, and will open the ICoFCS 2012, on September 27th, 2012, at 02:30pm.

See the Best Paper abstract:

"This paper presents the modified exponential fitting test for automatically identifying malicious activities in honeypot data based on state of the art model order selection schemes. Model order selection (MOS) schemes are frequently applied in several signal processing applications, such as RADAR , SONAR, communications, channel modeling, medical imaging, and parameters estimation of dominant multipath components from MIMO channel measurements. In this paper, we apply MOS schemes for the identification of malicious activity in honeypots. The proposed blind automatic techniques are efficient and need neither previous training nor knowledge of attack signatures for detecting malicious activities. In order to achieve such results an innovative approach is considered which models network traffic data as signals and noise allowing the application of signal processing methods. The model order selection schemes are adapted to process network data, showing that the Modified Exponential Fitting Test achieves the best performance and reliability in detecting attacks. The efficiency and accuracy of the theoretical results are tested on real data collected at a honeypot system located at the network border of a large banking institution in Latin America."





PAPERS SUBMISSION

ACCEPTED PAPERS

PUBLISHED PAPERS


AGENDA

BEST PAPER
HOME    SCOPE    VENUE    COMMITTEE    GUIDELINES    AWARD    PAPERS     CONFERENCES