jaydeltathree

Bace: Ch 4--Analysis Schemes

Eh, I read it all, and I got a basic understanding of what the schemes are, but there was a lot that went over my head. And I'm wondering if it even matters. Another problem of mine is that when I'm reading this stuff I'm always asking myself, how do you code something like this. I gotta stop asking that.

Basically everything is broken down into the categories of misuse detection and anomaly detection. Honestly, I may have to read this chapter again, but the only thing that's really sticking out now is the conclusion of the chapter, namely that "analysis involves isolating patterns of behavior known to represent problems (misuse analysis) and using mathematical approaches to characterize user behaviors that are abnormal (anomaly detection)." (pg. 117)

There was some talk about agent based systems that did get my attention, though. For some reason, I hadn't considered that others may have done research very similar to COL Carver's, and that I could base my thesis off that research. Definitely worth looking into.