网络安全态势感知的协作方法

8th International Conference on Collaborative Computing: Networking, Applications and Worksharing (CollaborateCom) Pub Date : 2012-10-14 DOI:10.4108/ICST.COLLABORATECOM.2012.250794

M. Mathews, Paul Halvorsen, A. Joshi, Timothy W. Finin

{"title":"网络安全态势感知的协作方法","authors":"M. Mathews, Paul Halvorsen, A. Joshi, Timothy W. Finin","doi":"10.4108/ICST.COLLABORATECOM.2012.250794","DOIUrl":null,"url":null,"abstract":"Traditional intrusion detection and prevention systems have well known limitations that decrease their utility against many kinds of attacks. Creating a new system that collaboratively combines information from traditional and nontraditional sensors to produce new, relevant signatures is one way to deal with these limitations. In this paper, we present a framework that uses this collaborative approach, as well as the details for a network traffic based classifier that shows promise for detecting malicious traffic.","PeriodicalId":225191,"journal":{"name":"8th International Conference on Collaborative Computing: Networking, Applications and Worksharing (CollaborateCom)","volume":"28 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2012-10-14","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"21","resultStr":"{\"title\":\"A collaborative approach to situational awareness for cybersecurity\",\"authors\":\"M. Mathews, Paul Halvorsen, A. Joshi, Timothy W. Finin\",\"doi\":\"10.4108/ICST.COLLABORATECOM.2012.250794\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Traditional intrusion detection and prevention systems have well known limitations that decrease their utility against many kinds of attacks. Creating a new system that collaboratively combines information from traditional and nontraditional sensors to produce new, relevant signatures is one way to deal with these limitations. In this paper, we present a framework that uses this collaborative approach, as well as the details for a network traffic based classifier that shows promise for detecting malicious traffic.\",\"PeriodicalId\":225191,\"journal\":{\"name\":\"8th International Conference on Collaborative Computing: Networking, Applications and Worksharing (CollaborateCom)\",\"volume\":\"28 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2012-10-14\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"21\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"8th International Conference on Collaborative Computing: Networking, Applications and Worksharing (CollaborateCom)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.4108/ICST.COLLABORATECOM.2012.250794\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"8th International Conference on Collaborative Computing: Networking, Applications and Worksharing (CollaborateCom)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.4108/ICST.COLLABORATECOM.2012.250794","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 21

摘要

传统的入侵检测和防御系统具有众所周知的局限性，这降低了它们对多种攻击的效用。创建一个新的系统，将传统和非传统传感器的信息协同结合，产生新的、相关的签名，是解决这些限制的一种方法。在本文中，我们提出了一个使用这种协作方法的框架，以及基于网络流量的分类器的细节，该分类器有望检测恶意流量。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

A collaborative approach to situational awareness for cybersecurity

Traditional intrusion detection and prevention systems have well known limitations that decrease their utility against many kinds of attacks. Creating a new system that collaboratively combines information from traditional and nontraditional sensors to produce new, relevant signatures is one way to deal with these limitations. In this paper, we present a framework that uses this collaborative approach, as well as the details for a network traffic based classifier that shows promise for detecting malicious traffic.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

8th International Conference on Collaborative Computing: Networking, Applications and Worksharing (CollaborateCom)

自引率

0.00%

发文量