Using Supervised and Transductive Learning Techniques to Extract Network Attack Scenarios

Intrusion detection can no longer satisfy security needs of an organization solely. Recently, the attention of security community turned to automatic intrusion response and prevention, as the techniques, to protect network resources as well as to reduce the attack damages. Knowing attack scenarios enables the system administrator to respond to the threats swiftly by either blocking the attacks or preventing them from escalating. Alert correlation is a technique to extract attack scenarios by investigating the correlation of intrusion detection systems alerts. In this paper, we propose a new learning-based method for alert correlation that employs supervised and transductive learning techniques. Using this method, we are able to extract attack scenarios automatically

Authors

Narges Khakpour

School of Electrical and Computer Engineering, Tarbiat Modares University

Saeed Jalili

School of Electrical and Computer Engineering, Tarbiat Modares University

Certificate
من نویسنده این مقاله هستم

استخراج به نرم افزارهای پژوهشی:

لینک ثابت به این Paper:

https://civilica.com/doc/72968

شناسه ملی سند علمی:

CSICC14_002

تاریخ نمایه سازی: 24 خرداد 1388

How to Cite to This Paper:

If you want to refer to this Paper in your research work, you can simply use the following phrase in the resources section:

Khakpour, Narges and Jalili, Saeed,1388,Using Supervised and Transductive Learning Techniques to Extract Network Attack Scenarios,14th annual International CSI Computer Conference,Tehran,https://civilica.com/doc/72968

Scientometrics

The specifications of the publisher center of this Paper are as follows:

Ranking of Tarbiat Modares University

Type of center: دانشگاه دولتی

Paper count: 43,106

In the scientometrics section of CIVILICA, you can see the scientific ranking of the Iranian academic and research centers based on the statistics of indexed articles.

مقالات مرتبط جدید