DocumentCode :
1901654
Title :
IDS Alert Classification Model Construction Using Decision Support Techniques
Author :
Zhang, Yan ; Huang, Shuguang ; Wang, Yongyi
Author_Institution :
Dept. of Network Eng., Electron. Eng. Inst., Hefei, China
Volume :
1
fYear :
2012
fDate :
23-25 March 2012
Firstpage :
301
Lastpage :
305
Abstract :
Although many IDSs have been proposed to assist administrators in detecting intrusion, false alarms are still huge and result in the difficulty of analysis. For this reason, we proposed a decision support system for constructing an alert classification model, which consists of three phases: alert preprocessing, model constructing and rule refining. Experimental results show that the proposed method discovers intrusion patterns quickly and precisely, and lightens the load of on-line alert analysis for experts obviously.
Keywords :
decision support systems; security of data; alert preprocessing; decision support system; false alarm; intrusion detection system alert classification model construction; intrusion pattern discovery; model constructing; online alert analysis; rule refining; Analytical models; Data models; Decision support systems; Intrusion detection; Refining; Sensors; Training; Decision Support System; IDS; false alert;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Computer Science and Electronics Engineering (ICCSEE), 2012 International Conference on
Conference_Location :
Hangzhou
Print_ISBN :
978-1-4673-0689-8
Type :
conf
DOI :
10.1109/ICCSEE.2012.242
Filename :
6188153
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=1901654
بازگشت