Research on alert correlation method based on alert confidence in multi-IDS environment

Research on alert correlation method based on alert confidence in multi-IDS environment

To overcome the shortcoming of current alert correlation methods which didn’t consider the confidence of IDS,an alert correlation method based on alerts confidence using the evidence theory was presented.Each alert was regarded as a piece of evidence of a network attack.Then multiple pieces of evide...

Full description

Saved in:
Bibliographic Details
Main Authors: MEI Hai-bin, GONG Jian
Format: Article
Language:zho
Published: Editorial Department of Journal on Communications 2011-01-01
Series:Tongxin xuebao
Subjects:
network security
intrusion detection system
alert correlation
evidence theory
confidence
Online Access:http://www.joconline.com.cn/zh/article/74419639/
Tags: Add Tag
No Tags, Be the first to tag this record!

Internet

http://www.joconline.com.cn/zh/article/74419639/

Similar Items