ALTernatives to Signatures (ALTS)
• White Paper
Software Engineering Institute
CMU/SEI Report NumberCERT-CC-2014-35
This report by the CERT Coordination Center, part of Carnegie Mellon University's Software Engineering Institute, presents the results of a study of non-signature-based approaches to detecting malicious activity in computer network traffic. Our results are based on a survey of the academic literature on anomaly detection (AD) and interviews with personnel from security operations centers at organizations in key sectors.