@inproceedings{10252769c3f54206a5bcb0208a078961,
title = "Preemptive intrusion detection",
abstract = "This paper presents a system named SPOT to achieve high accuracy and preemptive detection of attacks. We use security logs of real-incidents that occurred over a six-year period at National Center for Supercomputing Applications (NCSA) to evaluate SPOT. Our data consists of attacks that led directly to the target system being compromised, i.e., not detected in advance, either by the security analysts or by intrusion detection systems. Our approach can detect 75 percent of attacks as early as minutes to tens of hours before attack payloads are executed.",
keywords = "Credential stealing attack, Factor graph, Tagging, Timeliness",
author = "Phuong Cao and Chung, {Key Whan} and Kalbarczyk, {Zbigniew T} and Iyer, {Ravishankar K} and Slagell, {Adam J}",
year = "2014",
doi = "10.1145/2600176.2600197",
language = "English (US)",
isbn = "9781450329071",
series = "ACM International Conference Proceeding Series",
publisher = "Association for Computing Machinery",
booktitle = "Proceedings of the 2014 Symposium and Bootcamp on the Science of Security, HotSoS 2014",
address = "United States",
note = "2014 Symposium and Bootcamp on the Science of Security, HotSoS 2014 ; Conference date: 08-04-2014 Through 09-04-2014",
}