Link analysis approach to improve detection of fragmentation attacks in Misuse IDS

2009 First International Conference on Communications and Networking Pub Date : 2009-11-01 DOI:10.1109/COMNET.2009.5373571

O. Ben Ahmed, Z. Choukair

引用次数: 3

Abstract

Intrusion detection system (IDS) is a security technology that attempts to identify and isolate “Intrusions” against computer systems. The major problem of IDS is the vulnerability to fragment attacks. For this problem we propose a new approach (ARD-FA : Association Rules to Detect Fragment Attack) using data mining techniques of links analyses. We develop this approach and show some improvement in managing the problem.

查看原文本刊更多论文

链接分析方法改进误用IDS中碎片攻击的检测

入侵检测系统(IDS)是一种试图识别和隔离针对计算机系统的“入侵”的安全技术。IDS的主要问题是容易受到碎片攻击。针对这一问题，我们提出了一种利用链接分析的数据挖掘技术来检测碎片攻击的新方法(ARD-FA: Association Rules to Detect Fragment Attack)。我们开发了这种方法，并在管理问题方面显示出一些改进。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2009 First International Conference on Communications and Networking

自引率

0.00%

发文量