A collaborative approach to situational awareness for cybersecurity

8th International Conference on Collaborative Computing: Networking, Applications and Worksharing (CollaborateCom) Pub Date : 2012-10-14 DOI:10.4108/ICST.COLLABORATECOM.2012.250794

M. Mathews, Paul Halvorsen, A. Joshi, Timothy W. Finin

引用次数: 21

Abstract

Traditional intrusion detection and prevention systems have well known limitations that decrease their utility against many kinds of attacks. Creating a new system that collaboratively combines information from traditional and nontraditional sensors to produce new, relevant signatures is one way to deal with these limitations. In this paper, we present a framework that uses this collaborative approach, as well as the details for a network traffic based classifier that shows promise for detecting malicious traffic.

查看原文本刊更多论文

网络安全态势感知的协作方法

传统的入侵检测和防御系统具有众所周知的局限性，这降低了它们对多种攻击的效用。创建一个新的系统，将传统和非传统传感器的信息协同结合，产生新的、相关的签名，是解决这些限制的一种方法。在本文中，我们提出了一个使用这种协作方法的框架，以及基于网络流量的分类器的细节，该分类器有望检测恶意流量。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

8th International Conference on Collaborative Computing: Networking, Applications and Worksharing (CollaborateCom)

自引率

0.00%

发文量