Adaptive alert throttling for intrusion detection systems
作者: Uwe Aickelin , Gianni Tedesco
DOI:
关键词:
摘要: Each time that an intrusion detection system raises alert it must make some attempt to communicate the information operator. This communication channel can easily become target of a denial service attack because, like all channels, has fixed capacity. If this overwhelmed with bogus data, attacker quickly achieve complete neutralisation capability. Although these types are very hard stop completely, our aim is present techniques improve throughput and capacity such extent resources required successfully mount prohibitive.
arxiv.org
core.ac.uk参考文章(5)
Peng Ning, Yun Cui, Douglas Reeves, Correlating Alerts Using Prerequisites of Intrusions North Carolina State University. Dept. of Computer Science. ,(2001)
John Leach, Gianni Tedesco, LeachGianni Tedesco, Firestorm Network Intrusion Detection System ,(2003)
J. Turner, New directions in communications (or which way to the information age IEEE Communications Magazine. ,vol. 24, pp. 8- 15 ,(1986) , 10.1109/MCOM.1986.1092946
Fred P. Brooks, The Mythical Man-Month ,(1975)
Matthew M. Williamson, Jamie Twycross, Implementing and testing a virus throttle usenix security symposium. pp. 20- 20 ,(2003)