PhD Seminar Course on

Machine Learning for Computer Security

Cagliari, March 23-30, 2012


This activity was made possible by the "Visiting Professors 2011" program of the University of Cagliari, sponsored by the Autonomous Region of Sardinia
Instructor: Prof. Pavel Laskov
Duration: 8 hours
Schedule:

Lecture 1 (2 hours): Friday,    March 23, 10-12

Lecture 2 (2 hours): Monday,    March 26, 15-17,  

Lecture 3 (2 hours): Wednesday,    March 28, 14-16  

Lecture 4 (2 hours): Friday,    March 30, 10-12 

Venue: Mocci Classroom, DIEE A Building
Topics:
  1. Introduction to intrusion detection
    • Taxonomy: net/host
    • Host IDS: early approaches
    • Network IDS: feature extraction
    • Signature-based IDS:
  2. Anomaly detection for network security:
    • Early approaches (packet headers, PAYL, Anagram)
    • Payload based approach
    • applications (ReMIND experiments, SCADA systems)
  3. Classification for network security
    • Early approaches
    • Why it is difficult to use classification for IDS
    • behavioral classification
    • automatic signature generation
  4. Attacks against learning algorithms
    • attack taxomony
    • attacks against anagram
    • attacks against automatic signature generation
Organizer: Giorgio Giacinto
Dep. of Electrical and Electronic Engineering
University of Cagliari, Italy
Email: giacinto(at)diee(dot)unica(dot)it