Decentralized Publish-Subscribe System to Prevent Coordinated Attacks via Alert Correlation
作者: Joaquin Garcia , Fabien Autrel , Joan Borrell , Sergio Castillo , Frederic Cuppens
DOI: 10.1007/978-3-540-30191-2_18
关键词: Computer security 、 Systems architecture 、 Multicast 、 Secure multicast 、 Message passing 、 Computer science 、 Scheme (programming language) 、 Intrusion detection system
摘要: … In this paper, we present an intrusion detection system which provides a decentralized solution to prevent the use of network resources to perform coordinated attacks against third party …
springer.com
springerlink.com
hal.science 参考文章(14)
Christopher Krügel, Thomas Toth, Flexible, Mobile Agent Based Intrusion Detection for Dynamic Networks ,(2001)
Martin Fong, Alfonso Valdes, Dan Andersson, Heterogeneous Sensor Correlation: A Case Study of Live Traffic Analysis ,(2001)
Salem Benferhat, Fabien Autrel, Frédéric Cuppens, Alexandre Miège, Recognizing Malicious Intention in an Intrusion Detection Process. HIS. pp. 806- 817 ,(2002)
Salem Benferhat, Fabien Autrel, Frédéric Cuppens, Enhanced Correlation in an Intrusion Detection Process mathematical methods, models, and architectures for network security systems. pp. 157- 170 ,(2003) , 10.1007/978-3-540-45215-7_13
David Garlan, Serge Khersonsky, Jung Soo Kim, Model checking publish-subscribe systems international workshop on model checking software. pp. 166- 180 ,(2003) , 10.1007/3-540-44829-2_11
Stephen E. Smaha, Terrance L. Goan, James Brentano, Daniel M. Teal, Karl N. Levitt, Biswanath Mukherjee, Steven R. Snapp, L. Todd Heberlein, Gihan V. Dias, Tim Grance, Che-Lin Ho, Doug Mansur, DIDS (distributed intrusion detection system)—motivation, architecture, and an early prototype Internet besieged. pp. 211- 227 ,(1997)
Klaus Julisch, Using root cause analysis to handle intrusion detection alarms Universität Dortmund. pp. 1- 136 ,(2003) , 10.17877/DE290R-14858
F. Cuppens, Managing alerts in a multi-intrusion detection environment annual computer security applications conference. pp. 22- 31 ,(2001) , 10.1109/ACSAC.2001.991518
Peng Ning, Yun Cui, Douglas S. Reeves, Analyzing intensive intrusion alerts via correlation recent advances in intrusion detection. pp. 74- 94 ,(2002) , 10.1007/3-540-36084-0_5
Frédéric Cuppens, Rodolphe Ortalo, LAMBDA: A Language to Model a Database for Detection of Attacks recent advances in intrusion detection. pp. 197- 216 ,(2000) , 10.1007/3-540-39945-3_13