Selecting Log Data Sources to Correlate Attack Traces for Computer Network Security: Preliminary Results

机译：选择日志数据源以关联攻击跟踪以提高计算机网络安全性：初步结果

获取原文

获取原文并翻译 | 示例

获取外文期刊封面目录资料

页面导航

摘要
著录项
引文网络
相似文献
相关主题

摘要

The success of intrusion detection systems is dependent upon the data they process. In this paper, we consider different audit logs as data sources in order to make decisions about which subset of logs to use for intrusion detection. We evaluate different logs as intrusion detection data sources given different attacks and propose two distinct categories of logs (system and network) that can provide complete and complementary coverage of attacks from start to finish. We end by reporting preliminary results from experiments based on log correlation and visualization of logs.

机译：入侵检测系统的成功取决于它们处理的数据。在本文中，我们将不同的审核日志视为数据源，以便决定将哪些日志子集用于入侵检测。我们将不同的日志评估为受到不同攻击的入侵检测数据源，并提出两种截然不同的日志类别（系统和网络），它们可以从头到尾提供完整而互补的攻击范围。我们首先报告基于日志相关性和日志可视化的实验初步结果。

著录项

来源
《International Conference on Telecommunication Systems: Modeling and Analysis; 20031002-05; Monterey,CA(US)》|2003年|P.270-279|共10页
会议地点 MontereyCA(US)
作者
Xiaoxin Yin; Kiran Lakkaraju; Yifan Li; William Yurcik;
展开▼
作者单位

National Center for Supercomputing Applications (NCSA) University of Illinois at Urbana-Champaign;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类有线通信、通信线路工程;
关键词

相似文献

外文文献
中文文献
专利

1. Analysing security risks in computer and Radio Frequency Identification (RFID) networks using attack and protection trees [J] . George C. Dalton II, Kenneth S. Edge, Robert F. Mills, International Journal of Security and Networks . 2010,第2a3期

机译：使用攻击和保护树分析计算机和射频识别（RFID）网络中的安全风险
2. Development and Evaluation of a Dataset Generator Tool for Generating Synthetic Log Files Containing Computer Attack Signatures [J] . Stephen OShaughnessy, Geraldine Gray International journal of ambient computing and intelligence . 2011,第2期

机译：用于生成包含计算机攻击特征的综合日志文件的数据集生成器工具的开发和评估
3. Emerging data sources and the study of genocide: a preliminary analysis of prison data from S-21 security-center, Cambodia [J] . James Tyner, Xinyue Ye, Sokvisal Kimsroy, GeoJournal . 2016,第6期

机译：新兴数据来源和种族灭绝研究：来自柬埔寨S-21安全中心的监狱数据的初步分析
4. Selecting Log Data Sources to Correlate Attack Traces for Computer Network Security: Preliminary Results [C] . Xiaoxin Yin, Kiran Lakkaraju, Yifan Li, International Conference on Telecommunication Systems: Modeling and Analysis . 2003

机译：选择日志数据源以关联攻击迹线进行计算机网络安全：初步结果
5. Network security: A theory for securing computer networks against denial of service attacks. [D] . Martinez, Mario A. 2001

机译：网络安全：一种保护计算机网络免受拒绝服务攻击的理论。
6. A Data Clustering Algorithm for Detecting Selective Forwarding Attack in Cluster-Based Wireless Sensor Networks [O] . Hao Fu, Yinghong Liu, Zhe Dong, 2020

机译：基于集群的无线传感器网络中检测选择性转发攻击的数据聚类算法
7. Security Assessment of Computer Networks Based on Attack Graphs and Security Events [O] . Kotenko, Igor, Doynikova, Elena 2014

机译：基于攻击图和安全事件的计算机网络安全评估

Selecting Log Data Sources to Correlate Attack Traces for Computer Network Security: Preliminary Results

摘要

著录项

引文网络

相似文献

相关主题

期刊订阅