• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文会议>Multimedia Information Networking and Security, 2009. MINES '09 >A Hidden Markov Model Based Framework for Tracking and Predicting of Attack Intention
【24h】

A Hidden Markov Model Based Framework for Tracking and Predicting of Attack Intention

机译:基于隐马尔可夫模型的攻击意图跟踪与预测框架

获取原文
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

Recently, several approaches for intrusion correlation and attack scenario analysis have been proposed. However, these approaches all focus on the flooding alert reduction or high-level alert correlation. In this paper, we study the problem of tracking and predicting of attack intentions. We use hidden markov models to represent the typical attack scenarios and design a complete framework named HMM-AIP composed of online tracking and prediction module and offline model training module. A novel and effective tracking and predicting attack intention algorithm is presented. We perform experiments to validate our algorithm and the results show that our approach can identify false alert and give the creditable prediction result when the alert observation sequence fits the typical attack scenarios nicely.
机译:近来,已经提出了几种用于入侵相关和攻击情景分析的方法。但是,这些方法都集中在洪泛警报减少或高级警报相关性上。在本文中,我们研究了攻击意图的跟踪和预测问题。我们使用隐藏的马尔可夫模型来代表典型的攻击场景,并设计了一个名为HMM-AIP的完整框架,该框架由在线跟踪和预测模块以及离线模型训练模块组成。提出了一种新颖有效的跟踪预测攻击意图算法。我们进行了实验以验证我们的算法,结果表明,当警报观察序列很好地适合典型攻击场景时,我们的方法可以识别虚假警报并给出可信的预测结果。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号