Evolving classification of UNIX users' behaviors
Articles
Overview
published in
- Evolving Systems Journal
publication date
- December 2014
start page
- 231
end page
- 238
issue
- 4
volume
- 5
Digital Object Identifier (DOI)
International Standard Serial Number (ISSN)
- 1868-6478
Electronic International Standard Serial Number (EISSN)
- 1868-6486
abstract
- A computer can keep track of computer users to improve the security in the system. However, this does not prevent a user from impersonating another user. Only the user behavior recognition can help to detect masqueraders. Also, knowledge about computer users can be very beneficial for assisting them or predicting their future actions. Under the UNIX operating system, users type several commands which can be analyzed in order to create user profiles. In this research, a computer user behavior is represented by a sequence of UNIX commands. From these sequences of commands, a profile that defines its behavior is defined. In addition, a computer user behavior usually changes constantly. If the behavior recognition is done automatically, these changes need to be taken into account. For this reason, we propose in this research a simple evolving method that is able to keep up to date the computer user behavior profiles. This method is based on Evolving Fuzzy Systems and it is evaluated using real data streams.