Empirical Security

UMD researchers analyze incident data using software reliability models, time series, and epidemiological models to predict incident trends.  Intrusion detection system alerts are analyzed to identify low and slow attacks, as well as other attacks that security administrators cannot identify solely by reviewing the ranking of the most frequent event occurrences. The developed methods can be integrated into an automated graphical user interface-based central monitoring system.




Clark School        UMIACS   CMNS