Threat-Model-Driven Runtime Adaptation and Evaluation of Intrusion Detection System

机译：威胁模型驱动的运行时适应与入侵检测系统的评估

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

We present a mechanism for autonomous self-adaptation of a network-based intrusion detection system (IDS). The system is composed of a set of cooperating agents, each of which is based on an existing network behavior analysis method. The self adaptation mechanism is based on the insertion of a small number of challenges, i.e. known instances of past legitimate or malicious behavior. The response of individual system components to these challenges is used to measure and eventually optimize the system performance in terms of accuracy. In this work we show how to choose the challenges in a way such that the IDS attaches more importance to the detection of attacks that cause much damage.

机译：我们提出了一种基于网络的入侵检测系统（ID）的自主自适应的机制。该系统由一组协作代理组成，每个协作代理基于现有的网络行为分析方法。自适应机制基于插入少量挑战，即过去合法或恶意行为的已知实例。各个系统组件对这些挑战的响应用于测量并最终在准确性方面优化系统性能。在这项工作中，我们展示了如何选择挑战，使IDS更重视检测导致损坏的攻击。

著录项

来源
《International conference on autonomic computing and communications》|2009年||共2页
会议地点
作者

展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类通信;
关键词
intrusion detection; attack trees; self-adaptation; network behavior analysis;

机译：入侵检测;攻击树;自适应;网络行为分析;

相似文献

外文文献
中文文献
专利

1. Software Intrusion Detection Evaluation System: A Cost-Based Evaluation of Intrusion Detection Capability [J] . Agbotiname L. Imoize, Taiwo Oyedare, Michael E. Otuokere, Communications and Network . 2018,第4期

机译：软件入侵检测评估系统：基于成本的入侵检测能力评估
2. Software Intrusion Detection Evaluation System: A Cost-Based Evaluation of Intrusion Detection Capability [J] . Agbotiname L. Imoize, Taiwo Oyedare, Michael E. Otuokere, Communications and network . 2018,第4期

机译：软件入侵检测评估系统：基于成本的入侵检测能力评估
3. Configuration of intrusion prevention systems based on a legal user: the case for using intrusion prevention systems instead of intrusion detection systems [J] . Cai Chuanxi, Mei Shue, Zhong Weijun Information technology & management . 2019,第2期

机译：基于合法用户的入侵防御系统的配置：使用入侵防御系统代替入侵检测系统的情况
4. Threat-Model-Driven Runtime Adaptation and Evaluation of Intrusion Detection System [C] . Martin Rehak, Eugen Staab, Volker Fusenig, 6th international conference on autonomic computing and communications 2009 . 2009

机译：威胁模型驱动的运行时自适应和入侵检测系统评估
5. A set of approaches to evaluate and address the accuracy problem in intrusion detection systems. [D] . Massicotte, Frederic. 2011

机译：一套评估和解决入侵检测系统中准确性问题的方法。
6. Evaluation of Intrusion Detection Systems [O] . Jacob W. Ulvila, John E. Gaffney Jr. 2003

机译：入侵检测系统评估
7. Evaluating intrusion detection systems: The 1998 darpa off-line intrusion detection evaluation [O] . David J. Fried, Isaac Graf, Joshua W. Haines, 2000

机译：评估入侵检测系统：1998年darpa离线入侵检测评估
8. Evaluating Intrusion Detection Systems Without Attacking Your Friends: The 1998 DARPA Intrusion Detection Evaluation [R] . Cunningham, R. K., Lippmann, R. P., Fried, D. J., 1999

机译：在不攻击你的朋友的情况下评估入侵检测系统：1998年DaRpa入侵检测评估

Threat-Model-Driven Runtime Adaptation and Evaluation of Intrusion Detection System

摘要

著录项

相似文献

相关主题

期刊订阅