一种基于CVSS框架的分布式入侵检测系统

2008 IEEE International Conference on Signal Image Technology and Internet Based Systems Pub Date : 2008-11-30 DOI:10.1109/SITIS.2008.115

J. Aussibal, L. Gallon

{"title":"一种基于CVSS框架的分布式入侵检测系统","authors":"J. Aussibal, L. Gallon","doi":"10.1109/SITIS.2008.115","DOIUrl":null,"url":null,"abstract":"The objective of this paper is to describe a new distributed intrusion detection system (IDS) based on CVSS framework. This new platform uses a wide set of classical IDS and detection entities. This distributed IDS aims to improve the discovery of anomalies by reducing the rate of false positives and false negatives. Entities correlate the different alerts emitted by local probes. The severity of anomalies is evaluated by using a cumulative score of alerts scores.","PeriodicalId":202698,"journal":{"name":"2008 IEEE International Conference on Signal Image Technology and Internet Based Systems","volume":"43 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2008-11-30","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"7","resultStr":"{\"title\":\"A New Distributed IDS Based on CVSS Framework\",\"authors\":\"J. Aussibal, L. Gallon\",\"doi\":\"10.1109/SITIS.2008.115\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The objective of this paper is to describe a new distributed intrusion detection system (IDS) based on CVSS framework. This new platform uses a wide set of classical IDS and detection entities. This distributed IDS aims to improve the discovery of anomalies by reducing the rate of false positives and false negatives. Entities correlate the different alerts emitted by local probes. The severity of anomalies is evaluated by using a cumulative score of alerts scores.\",\"PeriodicalId\":202698,\"journal\":{\"name\":\"2008 IEEE International Conference on Signal Image Technology and Internet Based Systems\",\"volume\":\"43 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2008-11-30\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"7\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2008 IEEE International Conference on Signal Image Technology and Internet Based Systems\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/SITIS.2008.115\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2008 IEEE International Conference on Signal Image Technology and Internet Based Systems","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SITIS.2008.115","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 7

摘要

本文的目的是描述一种基于CVSS框架的分布式入侵检测系统。这个新平台使用了广泛的经典IDS和检测实体。这种分布式IDS旨在通过降低误报和误报率来改进异常的发现。实体将本地探测器发出的不同警报关联起来。通过使用警报分数的累积分数来评估异常的严重程度。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

A New Distributed IDS Based on CVSS Framework

The objective of this paper is to describe a new distributed intrusion detection system (IDS) based on CVSS framework. This new platform uses a wide set of classical IDS and detection entities. This distributed IDS aims to improve the discovery of anomalies by reducing the rate of false positives and false negatives. Entities correlate the different alerts emitted by local probes. The severity of anomalies is evaluated by using a cumulative score of alerts scores.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2008 IEEE International Conference on Signal Image Technology and Internet Based Systems

自引率

0.00%

发文量