Alert Verification Based on Attack Classification in Collaborative Intrusion Detection

Haier International Training Center, Qingdao, China July 30-August 01

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/SNPD.2007.216

Eighth ACIS International Conference ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Min Xiao Articles by Debao Xiao

	ASCII Text	x
	Min Xiao, Debao Xiao, "Alert Verification Based on Attack Classification in Collaborative Intrusion Detection," Software Engineering, Artificial Intelligence, Networking, and Parallel/Distributed Computing, ACIS International Conference on, vol. 2, pp. 739-744, Eighth ACIS International Conference on Software Engineering, Artificial Intelligence, Networking, and Parallel/Distributed Computing (SNPD 2007), 2007.

	BibTex	x
	@article{ 10.1109/SNPD.2007.216, author = {Min Xiao and Debao Xiao}, title = {Alert Verification Based on Attack Classification in Collaborative Intrusion Detection}, journal ={Software Engineering, Artificial Intelligence, Networking, and Parallel/Distributed Computing, ACIS International Conference on}, volume = {2}, year = {2007}, isbn = {0-7695-2909-7}, pages = {739-744}, doi = {http://doi.ieeecomputersociety.org/10.1109/SNPD.2007.216}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Software Engineering, Artificial Intelligence, Networking, and Parallel/Distributed Computing, ACIS International Conference on TI - Alert Verification Based on Attack Classification in Collaborative Intrusion Detection SN - 0-7695-2909-7 SP739 EP744 A1 - Min Xiao, A1 - Debao Xiao, PY - 2007 KW - null VL - 2 JA - Software Engineering, Artificial Intelligence, Networking, and Parallel/Distributed Computing, ACIS International Conference on ER -

Min Xiao, Huazhong Normal University, China

Debao Xiao, Huazhong Normal University, China

The traditional intrusion detection system has the disadvantages of alert flooding and high false positive due to weak collaboration-awareness. The collaborative intrusion detection mechanism is advocated to overcome shortcomings of traditional IDS and alert verification and correlation are two important techniques to perform collaborative mechanisms. The goal of alert verification is to distinguish the false positives from true positives or confirm the confidence of the alert by integrating context information of protected network with alerts. In this paper, we present an alert verification scheme based on attack classification to achieve the objectives of low cost and high efficiency of verification process.

Citation:

Min Xiao, Debao Xiao, "Alert Verification Based on Attack Classification in Collaborative Intrusion Detection," snpd, vol. 2, pp.739-744, Eighth ACIS International Conference on Software Engineering, Artificial Intelligence, Networking, and Parallel/Distributed Computing (SNPD 2007), 2007

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.