Intrusions in Marked Renewal Processes

We present a probabilistic model of an intrusion in a marked renewal process. Given a process and a sequence of events, an intrusion is a subsequence of events that is not produced by the process. Applications of the model are, for example, online payment fraud with the fraudster taking over a user's account and performing payments on the user's behalf, or unexpected equipment failures due to unintended use. We adopt Bayesian approach to infer the probability of an intrusion in a sequence of events, a MAP subsequence of events constituting the intrusion, and the marginal probability of each event in a sequence to belong to the intrusion. We evaluate the model for intrusion detection on synthetic data, as well as on anonymized data from an online payment system.

• Publication year

  2017

• Venue

  arXiv.org

• Publication date

  2017-09-24

• Fields of study

  Computer Science

• Identifiers
  arXiv 1709.08163
• External record

  Open on Semantic Scholar

• Source metadata

  Semantic Scholar

• No claims are published for this paper.

• No concepts are published for this paper.

• Closed-Form Estimators for the Gamma Distribution Derived From Likelihood Equations

  2017cited by this paper
• RENEWAL THEORY

  2014influential reference
• Stochastic Processes

  2014cited by this paper
• Parametric Statistical Inference: Basic Theory and Modern Approaches

  2013cited by this paper
• High-frequency financial data modeling using Hawkes processes

  2012cited by this paper
• Segregating event streams and noise with a Markov renewal process model

  2012cited by this paper
• Anomaly Detection for Discrete Sequences: A Survey

  2012cited by this paper
• Poisson Processes

  2011cited by this paper
• Hierarchical Probabilistic Models for Group Anomaly Detection

  2011cited by this paper
• Group Anomaly Detection using Flexible Genre Models

  2011cited by this paper
• Modeling Events with Cascades of Poisson Processes

  2010cited by this paper
• Theory and Applications of Stochastic Processes: An Analytical Approach

  2009cited by this paper
• Point Process Theory and Applications: Marked Point and Piecewise Deterministic Processes

  2007cited by this paper
• Preventive Maintenance Using Continuous-Time Semi-Markov Processes

  2006cited by this paper
• Novelty detection: a review - part 1: statistical approaches

  2003cited by this paper
• Common Poisson Shock Models: Applications to Insurance and Credit Risk Modelling

  2003cited by this paper
• Hidden Markov Independent Component Analysis

  2000cited by this paper
• A Markov Chain Model of Temporal Behavior for Anomaly Detection

  2000cited by this paper
• A Unifying Review of Linear Gaussian Models

  1999cited by this paper
• On cox processes and credit risky securities

  1998cited by this paper
• Parametric Statistical Inference

  1996cited by this paper
• A quasi renewal process and its applications in imperfect maintenance

  1996cited by this paper
• Statistical Models for Earthquake Occurrences and Residual Analysis for Point Processes

  1988cited by this paper
• An Introduction to Latent Variable Models. Monographs on Statistics and Applied Probability

  1985cited by this paper
• An Introduction to Latent Variable Models

  1984cited by this paper
• ON THE CONVERGENCE PROPERTIES OF THE EM ALGORITHM

  1983influential reference
• A Maximization Technique Occurring in the Statistical Analysis of Probabilistic Functions of Markov Chains

  1970cited by this paper
• RENEWAL REWARD PROCESSES

  1969cited by this paper
• An Empirical Bayes Approach to Statistics

  1956influential reference

• No citing papers are available for this paper.