Title :
An alert fusion model inspired by artificial immune system
Author :
Mahboubian, Mohammad ; Udzir, Nur Izura ; Subramaniam, Shamala ; Hamid, Nor Asila Wati Abdul
Author_Institution :
Fac. of Comput. Sci. & Inf. Technol., Univ. Putra Malaysia, Serdang, Malaysia
Abstract :
In the recent years one of the most focused topics in the field of network security and more specifically intrusion detection systems was to find a solution to reduce the overwhelming alerts generated by IDSs in the network. Inspired by human defence system and danger theory we propose a complementary subsystem for IDS which can be integrated into any existing IDS models to aggregate the alerts in order to reduce them, and subsequently reduce false alarms among the alerts. After evaluation using different datasets and attack scenarios, our model managed to aggregate the alerts by the average rate of 97.5 percent.
Keywords :
alarm systems; artificial immune systems; computer network security; IDS models; alert fusion model; artificial immune system; danger theory; false alarms; human defence system; intrusion detection systems; network security; Aggregates; Computational modeling; Correlation; IP networks; Immune system; Intrusion detection; Alert correlation; Alert fusion; Artificial Immune system; Danger theory; Intrusion detection system;
Conference_Titel :
Cyber Security, Cyber Warfare and Digital Forensic (CyberSec), 2012 International Conference on
Conference_Location :
Kuala Lumpur
Print_ISBN :
978-1-4673-1425-1
DOI :
10.1109/CyberSec.2012.6246083
