Our contribution in the field of network security concentrates on the research of novel anomaly detection methods. In particular, we investigate the mechanisms for the detection of anomalous behavior in computer networks based on the processing of purely statistical information, without relying on the inspection of the content of the transmitted data. Due to the specific nature of the problem, we rely on ensemble approach, where the system consists of many unsupervised statistical anomaly detection algorithms, integrated by means of trust modeling, use to infer more stable long-term conclusions from the anomaly detector’s outputs. The system further relies on semi-supervised optimization framework based on the game theoretical optimization methods.

 Contact person: Martin Rehak