RTECA: Real time episode correlation algorithm for multi-step attack scenarios detection
作者: Ali Ahmadian Ramaki , Morteza Amini , Reza Ebrahimi Atani
DOI: 10.1016/J.COSE.2014.10.006
关键词:
摘要: … an on-line attack tree, it determines the steps of the multi-step attacks precisely and efficiently. We also provided a prediction facility in the framework to predict the next steps of an active …
elsevier.com
researchgate.net 
sci-hub.se 参考文章(19)
Ali A. Ghorbani, Bin Zhu, Alert Correlation for Extracting Attack Strategies International Journal of Network Security. ,vol. 3, pp. 244- 258 ,(2006)
Oliver M. Dain, Robert K. Cunningham, Building Scenarios from a Heterogeneous Alert Stream ,(2001)
Hung-Jen Liao, Chun-Hung Richard Lin, Ying-Chih Lin, Kuang-Yuan Tung, Review: Intrusion detection system: A comprehensive review Journal of Network and Computer Applications. ,vol. 36, pp. 16- 24 ,(2013) , 10.1016/J.JNCA.2012.09.004
Sherri K. Harms, Jitender S. Deogun, Sequential Association Rule Mining with Time Lags intelligent information systems. ,vol. 22, pp. 7- 22 ,(2004) , 10.1023/A:1025824629047
Moon Sun Shin, Kyeong Ja Jeong, Alert correlation analysis in intrusion detection advanced data mining and applications. pp. 1049- 1056 ,(2006) , 10.1007/11811305_114
Soojin Lee, Byungchun Chung, Heeyoul Kim, Yunho Lee, Chanil Park, Hyunsoo Yoon, Real-time analysis of intrusion detection alerts via correlation Computers & Security. ,vol. 25, pp. 169- 183 ,(2006) , 10.1016/J.COSE.2005.09.004
Mahbobeh Soleimani, Ali A. Ghorbani, Multi-layer episode filtering for the multi-step attack detection Computer Communications. ,vol. 35, pp. 1368- 1379 ,(2012) , 10.1016/J.COMCOM.2012.04.001
Reza Sadoddin, Ali A. Ghorbani, An incremental frequent structure mining framework for real-time alert correlation Computers & Security. ,vol. 28, pp. 153- 173 ,(2009) , 10.1016/J.COSE.2008.11.010
Giorgos Karopoulos, Georgios Kambourakis, Stefanos Gritzalis, Elisavet Konstantinou, A framework for identity privacy in SIP Journal of Network and Computer Applications. ,vol. 33, pp. 16- 28 ,(2010) , 10.1016/J.JNCA.2009.07.004
Shaojun Zhang, Jianhua Li, Xiuzhen Chen, Lei Fan, Building network attack graph for alert causal correlation Computers & Security. ,vol. 27, pp. 188- 196 ,(2008) , 10.1016/J.COSE.2008.05.005