The Ontology of Metrics for Security Evaluation and Decision Support in SIEM Systems
作者: Igor Kotenko , Olga Polubelova , Igor Saenko , Elena Doynikova , None
DOI: 10.1109/ARES.2013.84
关键词:
摘要: Analysis of computer network security is a serious challenge. Many metrics has been proposed for this purpose, but their effective use rapid and reliable evaluation generation countermeasures in SIEM systems remains an important problem. The ontologies information representation contributes largely to the success task. However, most works on ontological data does not take into account metrics. This paper proposes new approach using which based serves comprehensive subsequent countermeasure generation. novelty that ontology viewed as core component decision support system. solutions are tested specific example.
sci-hub.se 参考文章(25)
Nizar Kheir, Nora Cuppens-Boulahia, Frédéric Cuppens, Hervé Debar, A service dependency model for cost-sensitive intrusion response european symposium on research in computer security. pp. 626- 642 ,(2010) , 10.1007/978-3-642-15497-3_38
Gustavo Gonzalez Granadillo, Hervé Débar, Grégoire Jacob, Chrystel Gaber, Mohammed Achemlal, Individual Countermeasure Selection Based on the Return On Response Investment Index Lecture Notes in Computer Science. ,vol. 7531, pp. 156- 170 ,(2012) , 10.1007/978-3-642-33704-8_14
Benjamin A. Blakely, Cyberprints: Identifying Cyber Attackers by Feature Analysis ProQuest LLC. ,(2012) , 10.31274/ETD-180810-2217
Lingyu Wang, Sushil Jajodia, Anoop Singhal, Steven Noel, k-zero day safety: measuring the security risk of networks against unknown attacks european symposium on research in computer security. ,vol. 6345, pp. 573- 587 ,(2010) , 10.1007/978-3-642-15497-3_35
Ram Dantu, Prakash Kolan, João Cangussu, Network risk management using attacker profiling Security and Communication Networks. ,vol. 2, pp. 83- 96 ,(2009) , 10.1002/SEC.58
Igor Kotenko, Olga Polubelova, Igor Saenko, None, The Ontological Approach for SIEM Data Repository Implementation ieee international conference on green computing and communications. pp. 761- 766 ,(2012) , 10.1109/GREENCOM.2012.125
Jorge E. López de Vergara, Enrique Vázquez, Antony Martin, Samuel Dubus, Marie-Noëlle Lepareux, Use of Ontologies for the Definition of Alerts and Policies in a Network Security Platform Journal of Networks. ,vol. 4, pp. 720- 733 ,(2009) , 10.4304/JNW.4.8.720-733
Almut Herzog, Nahid Shahmehri, Claudiu Duma, An Ontology of Information Security International Journal of Information Security and Privacy. ,vol. 1, pp. 1- 23 ,(2007) , 10.4018/JISP.2007100101
Yu-Sung Wu, Bingrui Foo, Yu-Chun Mao, Saurabh Bagchi, Eugene H. Spafford, Automated adaptive intrusion containment in systems of interacting services Computer Networks. ,vol. 51, pp. 1334- 1360 ,(2007) , 10.1016/J.COMNET.2006.09.006
Natalia Stakhanova, Samik Basu, Johnny Wong, A Cost-Sensitive Model for Preemptive Intrusion Response Systems advanced information networking and applications. pp. 428- 435 ,(2007) , 10.1109/AINA.2007.9