{"title":"基于异常的分布式入侵检测系统体系结构","authors":"A. Baláz, J. Trelová, M. Kostrab","doi":"10.1109/INES.2010.5483870","DOIUrl":null,"url":null,"abstract":"The designed architecture of intrusion detection system uses a two-layer hybrid model for detecting intrusions. The system processes network flows in real communication operation and provides processing of these data in real time. First layer consists of detection sensors which provide basic processing of input data based on statistical methods with a direct connection to countermeasure modules. Performance and accuracy of the designed system is ensured with central distributed processing, in which the detection of generalized description of partial ordered events is used, preventing the intrusion itself. By this the attack variability of the same type are provided.","PeriodicalId":118326,"journal":{"name":"2010 IEEE 14th International Conference on Intelligent Engineering Systems","volume":"80 2-3 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2010-05-05","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"5","resultStr":"{\"title\":\"Architecture of distributed intrusion detection system based on anomalies\",\"authors\":\"A. Baláz, J. Trelová, M. Kostrab\",\"doi\":\"10.1109/INES.2010.5483870\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The designed architecture of intrusion detection system uses a two-layer hybrid model for detecting intrusions. The system processes network flows in real communication operation and provides processing of these data in real time. First layer consists of detection sensors which provide basic processing of input data based on statistical methods with a direct connection to countermeasure modules. Performance and accuracy of the designed system is ensured with central distributed processing, in which the detection of generalized description of partial ordered events is used, preventing the intrusion itself. By this the attack variability of the same type are provided.\",\"PeriodicalId\":118326,\"journal\":{\"name\":\"2010 IEEE 14th International Conference on Intelligent Engineering Systems\",\"volume\":\"80 2-3 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2010-05-05\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"5\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2010 IEEE 14th International Conference on Intelligent Engineering Systems\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/INES.2010.5483870\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2010 IEEE 14th International Conference on Intelligent Engineering Systems","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/INES.2010.5483870","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Architecture of distributed intrusion detection system based on anomalies
The designed architecture of intrusion detection system uses a two-layer hybrid model for detecting intrusions. The system processes network flows in real communication operation and provides processing of these data in real time. First layer consists of detection sensors which provide basic processing of input data based on statistical methods with a direct connection to countermeasure modules. Performance and accuracy of the designed system is ensured with central distributed processing, in which the detection of generalized description of partial ordered events is used, preventing the intrusion itself. By this the attack variability of the same type are provided.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
