Environmental awareness intrusion detection and prevention system toward reducing false positives and false negatives

机译：减少误报和误报的环保意识入侵检测和预防系统

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

Intrusion detection systems (IDS) and intrusion prevention systems (IPS) are now considered a mainstream security technology. IDS and IPS are designed to identify security breaches. However, one of the most important problems with current IDS and IPS is the lack of the ldquoenvironmental awarenessrdquo (i.e. security policy, network topology and software). This ignorance triggers many false positives (false alerts) and false negatives (undetected attacks). In this paper, we propose a novel intrusion detection and prevention architecture where we integrate the characteristics and the properties of the protected system in the traffic analysis process. The experimental evaluation shows the effectiveness of our solution. In fact, we measure a reduction of 89.59% of false positives and 79.18% of false negatives.

机译：入侵检测系统（IDS）和入侵防御系统（IPS）现在被视为主流安全技术。 IDS和IPS旨在识别安全漏洞。但是，当前IDS和IPS的最重要问题之一是缺乏“环境意识”（即安全策略，网络拓扑和软件）。这种无知会触发许多误报（错误警报）和误报（未检测到攻击）。在本文中，我们提出了一种新颖的入侵检测和防御体系结构，该体系结构在流量分析过程中整合了受保护系统的特征和特性。实验评估显示了我们解决方案的有效性。实际上，我们测算出的假阳性减少了89.59％，假阴性减少了79.18％。

著录项

来源
《Computational Intelligence in Cyber Security, 2009. CICS '09》|2009年|107-114|共8页
会议地点 Nashville TN(US);Nashville TN(US)
作者
Sourour M.; Adel B.; Tarek A.;
展开▼
作者单位

Dept. of Comput. Sci. Networks, Digital Security Lab., Higher Sch. of Telecommun. (SupCom);

展开▼
会议组织
原文格式 PDF
正文语种
中图分类
关键词
computer networks; security of data; telecommunication security; telecommunication traffic; environmental aware network intrusion detection; mainstream security technology; network cartography; network intrusion prevention system; network security breach identification; network traffic analysis process; IDS; IPS; Network security; Security Policy;

机译：计算机网络;数据安全;电信安全;电信流量;环保网络入侵检测;主流安全技术;网络制图;网络入侵防御系统;网络安全漏洞识别;网络流量分析过程; IDS; IPS;网络安全;安全策略;

相似文献

外文文献
中文文献
专利

1. Statistical analysis of false positives and false negatives from real traffic with intrusion detection/prevention systems [J] . Ho C.-Y., Lai Y.-C., Chen I.-W., Communications Magazine, IEEE . 2012,第3期

机译：使用入侵检测/预防系统对真实流量中的误报和误报进行统计分析
2. Enhancing the Accuracy of Intrusion Detection Systems by Reducing the Rates of False Positives and False Negatives Through Multi-objective Optimization [J] . Hachmi Fatma, Boujenfa Khadouja, Limam Mohamed Journal of network and systems management . 2019,第1期

机译：通过多目标优化降低误报率和误报率，提高入侵检测系统的准确性
3. Reduce the False Positive and False Negative from Real Traffic with Intrusion Detection in Zigbee Wireless Networks [J] . Sivashanmugam N. IOSR journal of computer engineering . 2015,第1期

机译：通过Zigbee无线网络中的入侵检测减少实际流量中的误报率和误报率
4. Environmental Awareness Intrusion Detection and Prevention System toward reducing False Positives and False Negatives [C] . Meharouech Sourour, Bouhoula Adel, Abbes Tarek IEEE Symposium on Computational Intelligence in Cyber Security . 2009

机译：环境意识入侵检测和预防系统降低误报和假底层
5. Reduction of False Positives in Intrusion Detection Based on Extreme Learning Machine with Situation Awareness [D] . Burgio, Donald A. 2020

机译：基于极端学习机的入侵检测中误报的减少
6. All That Glisters Is Not Gold: Sampling-Process Uncertainty in Disease-Vector Surveys with False-Negative and False-Positive Detections [O] . Fernando Abad-Franch, Carolina Valença-Barbosa, Otília Sarquis, 2014

机译：所有那些闪闪发光的都不是金子：带有假阴性和假阳性检测结果的疾病媒介调查中的采样过程不确定性
7. False Positives and Negatives from Real Traffic with Intrusion Detection/Prevention Systems [O] . Cheng-yuan Ho, Ying-dar Lin, Yuan-cheng Lai, 2013

机译：入侵检测/预防系统实时流量的误报和否定
8. Abort Trigger False Positive and False Negative Analysis Methodology for Threshold-Based Abort Detection. [R] . Melcher, K. J., Cruz, J. A., B., J. S., 2015

机译：基于阈值的中止检测的中止触发假阳性和假阴性分析方法。

Environmental awareness intrusion detection and prevention system toward reducing false positives and false negatives

摘要

著录项

相似文献

相关主题

期刊订阅