Alert Correlation and Prediction Using Data Mining and HMM
作者: Mohammad Khansari , Maryam AmirHaeri , Hamid Farhadi
DOI: 10.22042/ISECURE.2015.3.2.3
关键词:
摘要: … alert correlation, which extracts useful and high-level alerts, and helps to make timely decisions when a security breach occurs. In this paper, we propose an alert correlation … correlation …
isecure-journal.com
ebscohost.com
researchgate.net 参考文章(29)
Ali A. Ghorbani, Bin Zhu, Alert Correlation for Extracting Attack Strategies International Journal of Network Security. ,vol. 3, pp. 244- 258 ,(2006)
C. Raymond Perrault, Beranek Bolt, Paul Cohen, James Allen, Beyond question-answering(interactive natural language systems) ,(1981)
Yan Zhai, Peng Ning, P. Iyer, D.S. Reeves, Reasoning about complementary intrusion evidence annual computer security applications conference. pp. 39- 48 ,(2004) , 10.1109/CSAC.2004.29
C Raymond Perrault, Philip R Cohen, James F Allen, Beyond Question-Answering. Psychology Press. pp. 267- 296 ,(1981) , 10.4324/9781315802671-19
Zhuo Ning, Jian Gong, An Intrusion Plan Recognition Algorithm Based on Max-1-Connected Causal Networks international conference on conceptual structures. pp. 809- 816 ,(2007) , 10.1007/978-3-540-72590-9_122
Reuben Smith, Nathalie Japkowicz, Maxwell Dondo, Peter Mason, Using unsupervised learning for network alert correlation Canadian AI'08 Proceedings of the Canadian Society for computational studies of intelligence, 21st conference on Advances in artificial intelligence. pp. 308- 319 ,(2008) , 10.1007/978-3-540-68825-9_29
Xinzhou Qin, Wenke Lee, Attack plan recognition and prediction using causal networks annual computer security applications conference. pp. 370- 379 ,(2004) , 10.1109/CSAC.2004.7
Sherri K. Harms, Jitender S. Deogun, Sequential Association Rule Mining with Time Lags intelligent information systems. ,vol. 22, pp. 7- 22 ,(2004) , 10.1023/A:1025824629047
Tadeusz Pietraszek, Using Adaptive Alert Classification to Reduce False Positives in Intrusion Detection recent advances in intrusion detection. pp. 102- 124 ,(2004) , 10.1007/978-3-540-30143-1_6
Peng Ning, Yun Cui, Douglas S. Reeves, Analyzing intensive intrusion alerts via correlation recent advances in intrusion detection. pp. 74- 94 ,(2002) , 10.1007/3-540-36084-0_5