Detection and classification of intrusions and faults using sequences of system calls

This paper investigates the use of sequences of system calls for classifying intrusions and faults induced by privileged processes in Unix. Classification is an essential capability for responding ...