A realistic graph-based alert correlation system

被引:27
|
作者
Ben Fredj, Ouissem [1 ]
机构
[1] Taif Univ, At Taif, Saudi Arabia
来源
SECURITY AND COMMUNICATION NETWORKS | 2015年 / 8卷 / 15期
关键词
security; correlation; attack graph; Markov chain;
D O I
10.1002/sec.1190
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
This paper introduces a graph-based attack description that comes with different analysis methods for alert correlation. The system encompasses an attack scenario detection method, an alert correlation method that recognizes multistep attacks, and graph-based classification method to extract different types of alerts. The performance analysis shows that the system can correlate a huge number of alerts (more than 442000 alerts) into a dozens of attack graphs. The attack graph has permitted us to extract several attack properties with high precision. Copyright (c) 2015 John Wiley & Sons, Ltd.
引用
收藏
页码:2477 / 2493
页数:17
相关论文
共 50 条
  • [41] Graph-Based Intrusion Detection System for Controller Area Networks
    Islam, Riadul
    Refat, Rafi Ud Daula
    Yerram, Sai Manikanta
    Malik, Hafiz
    IEEE TRANSACTIONS ON INTELLIGENT TRANSPORTATION SYSTEMS, 2022, 23 (03) : 1727 - 1736
  • [42] GraphHO: A Graph-based Handover Optimization System for Cellular Networks
    Yang, Lin
    Cheng, Min
    Qiu, Jun
    Chen, Zhitang
    2022 INTERNATIONAL SYMPOSIUM ON WIRELESS COMMUNICATION SYSTEMS, ISWCS, 2022,
  • [43] A Graph-Based Approach for Hydraulic System Automated Conceptual Design
    Ma, Wenyong
    Wang, Delun
    Ting, Kwun-Lon
    RECONFIGURABLE MECHANISMS AND ROBOTS, 2009, : 222 - +
  • [44] A generalized convergence result for the graph-based ant system metaheuristic
    Gutjahr, WJ
    PROBABILITY IN THE ENGINEERING AND INFORMATIONAL SCIENCES, 2003, 17 (04) : 545 - 569
  • [45] A Graph-Based Friend Recommendation System Using Genetic Algorithm
    Silva, Nitai B.
    Tsang, Ing-Ren
    Cavalcanti, George D. C.
    Tsang, Ing-Jyh
    2010 IEEE CONGRESS ON EVOLUTIONARY COMPUTATION (CEC), 2010,
  • [46] A Graph-Based Approach for Managing Enterprise Information System Security
    Sengupta, Anirban
    Manna, Asmita
    Mazumdar, Chandan
    2013 INTERNATIONAL CONFERENCE ON CLOUD & UBIQUITOUS COMPUTING & EMERGING TECHNOLOGIES (CUBE 2013), 2013, : 137 - +
  • [47] Bond graph-based modeling and simulation of marine condensation system
    Ni, He
    Cheng, Gang
    Sun, Feng-Rui
    Shanghai Jiaotong Daxue Xuebao/Journal of Shanghai Jiaotong University, 2010, 44 (04): : 571 - 577
  • [48] DGIDS: Dynamic graph-based intrusion detection system for CAN
    Song, Jiaru
    Qin, Guihe
    Liang, Yanhua
    Yan, Jie
    Sun, Minghui
    COMPUTERS & SECURITY, 2024, 147
  • [49] A Graph-Based Relation Extraction Method for Question Answering System
    Veena, G.
    Gupta, Deepa
    Athulya, S.
    Shaji, Salma
    2017 INTERNATIONAL CONFERENCE ON ADVANCES IN COMPUTING, COMMUNICATIONS AND INFORMATICS (ICACCI), 2017, : 944 - 949
  • [50] A GRAPH-BASED APPROACH TO ACTION SCHEDULING IN A PARALLEL DATABASE SYSTEM
    GREFEN, PWPJ
    APERS, PMG
    COMPUTERS AND ARTIFICIAL INTELLIGENCE, 1993, 12 (03): : 251 - 278
12345