A Quality Assurance Framework for Network Attack Correlation

Author

Li, Xiangyang ; Chandra, Charu

Author_Institution

Dept. of Ind. & Manuf. Syst. Eng., Michigan Univ.

fYear

0

fDate

0-0 0

Firstpage

733

Lastpage

738

Abstract

Traditional intrusion detection techniques cannot handle the uncertainty and complexity of network attack correlation tasks. They lack the capability to assure the quality of knowledge fusion especially in large distributed systems, which is the key to efficient cyber defense. We propose a systematic and process-oriented approach to engineer network attack correlation, which, based on a probabilistic model, focuses on reconfigurability and quality assurance of distributed intrusion detection systems in a well-controlled paradigm. We elaborate the conceptual framework in this exploratory study along with some preliminary evaluation results introduced and conclude with future directions

Keywords

computer networks; security of data; statistical analysis; cyber defense; distributed intrusion detection techniques; distributed systems; knowledge fusion; network attack correlation; probabilistic model; process-oriented approach; quality assurance framework; Computer networks; Feedback control; Intrusion detection; Manufacturing industries; Manufacturing systems; Military computing; Quality assurance; Signal processing algorithms; Systems engineering and theory; Uncertainty;

fLanguage

English

Publisher

ieee

Conference_Titel

Networking, Sensing and Control, 2006. ICNSC '06. Proceedings of the 2006 IEEE International Conference on

Conference_Location

Ft. Lauderdale, FL

Print_ISBN

1-4244-0065-1

Type

conf

DOI

10.1109/ICNSC.2006.1673237

Filename

1673237