• DocumentCode
    2695398
  • Title

    An alert fusion model inspired by artificial immune system

  • Author

    Mahboubian, Mohammad ; Udzir, Nur Izura ; Subramaniam, Shamala ; Hamid, Nor Asila Wati Abdul

  • Author_Institution
    Fac. of Comput. Sci. & Inf. Technol., Univ. Putra Malaysia, Serdang, Malaysia
  • fYear
    2012
  • fDate
    26-28 June 2012
  • Firstpage
    317
  • Lastpage
    322
  • Abstract
    In the recent years one of the most focused topics in the field of network security and more specifically intrusion detection systems was to find a solution to reduce the overwhelming alerts generated by IDSs in the network. Inspired by human defence system and danger theory we propose a complementary subsystem for IDS which can be integrated into any existing IDS models to aggregate the alerts in order to reduce them, and subsequently reduce false alarms among the alerts. After evaluation using different datasets and attack scenarios, our model managed to aggregate the alerts by the average rate of 97.5 percent.
  • Keywords
    alarm systems; artificial immune systems; computer network security; IDS models; alert fusion model; artificial immune system; danger theory; false alarms; human defence system; intrusion detection systems; network security; Aggregates; Computational modeling; Correlation; IP networks; Immune system; Intrusion detection; Alert correlation; Alert fusion; Artificial Immune system; Danger theory; Intrusion detection system;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Cyber Security, Cyber Warfare and Digital Forensic (CyberSec), 2012 International Conference on
  • Conference_Location
    Kuala Lumpur
  • Print_ISBN
    978-1-4673-1425-1
  • Type

    conf

  • DOI
    10.1109/CyberSec.2012.6246083
  • Filename
    6246083
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2695398