Network intrusion early warning model based on D-S evidence theory

Author

Zhai, Jian-Qiang ; Tian, Jun-Feng ; Du, Rui-Zhong ; Huang, Jian-Cai

Author_Institution

Fac. of Math. & Comput. Sci., Hebei Univ., Baoding, China

Volume

4

fYear

2003

fDate

2-5 Nov. 2003

Firstpage

1972

Abstract

Application of data fusion technique in intrusion detection is the trend of next-generation intrusion detection system (IDS). In network security, adopting security early warning technique is feasible to effectively defend against attacks and attackers. To do this, correlative information provided by IDS must be gathered and the current intrusion characteristics and situation must be analyzed and estimated. This paper applies D-S evidence theory to distributed intrusion detection system and propose a early warning model which fuses information from detection centers, makes clear intrusion situation and improves the early warning capability and detection efficiency of the IDS.

Keywords

inference mechanisms; security of data; sensor fusion; uncertainty handling; D-S evidence theory; data fusion technique; intrusion detection system; network intrusion; network security; Computer network management; Computer networks; Computer science; Data security; Electronic mail; Information analysis; Information security; Intrusion detection; Mathematics; Sensor fusion;

fLanguage

English

Publisher

ieee

Conference_Titel

Machine Learning and Cybernetics, 2003 International Conference on

Print_ISBN

0-7803-8131-9

Type

conf

DOI

10.1109/ICMLC.2003.1259825

Filename

1259825