An Expectation Maximization Approach to Detecting Compromised Remote Access Accounts
May 22, 2013
Proceedings of FLAIRS 2013, St. Pete Beach, Fla.
Just as credit-card companies are able to detect aberrant transactions on a customer’s credit card, it would be useful to have methods that could automatically detect when a user’s login credentials for Virtual Private Network (VPN) access have been compromised. We present here a novel method for detecting that a VPN account has been compromised, in a manner that bootstraps a model of the second unauthorized user.