Network Security Situation Assessment: A review and discussion

被引：13

作者：

Leau, Yu-Beng ^{[1
]}

Manickam, Selvakumar ^{[1
]}

Chong, Yung-Wey ^{[1
]}

机构：

[1] National Advanced IPv6 Centre (NAv6), Universiti Sains Malaysia, Bayan Lepas, Penang

来源：

Lecture Notes in Electrical Engineering | 2015年 / 339卷

关键词：

Artificial Intelligence; Network Security Situation Assessment; Relationship Analysis; Statistical Approach;

D O I：

10.1007/978-3-662-46578-3_48

中图分类号：

学科分类号：

摘要：

The number of network intrusion attempts have reached an alarming level. Questions have been raised about the efficiency of deploying intrusion detection and prevention system which are more concern on single device instead of overall network security situation. Researchers have shown an increased interest in designing network security situation awareness which consists of event detection, situation assessment and situation prediction. Generally, Network Security Situation Assessment is a process to evaluate the entire network security situation in particular time frame and use the result to predict the incoming situation. In this paper, we review existing network security situation assessment methods from three major categories in the aspect of its strengths and limitations. A list of consideration criteria has been summarized for future situation assessment model design. © Springer-Verlag Berlin Heidelberg 2015.

引用

页码：407 / 414

页数：7

共 37 条

[1] Yu Beng L., Et al., A Survey of Intrusion Alert Correlation and Its Design Considerations, IETE Technical Review, 31, 3, pp. 233-240, (2014)
[2] Beng L.Y., Manickam S., Fun T.S., A Framework for Analytic Hierarchy Process-Entropy Network Security Situation Assessment and Adaptive Grey Verhulst-Kalman Prediction in Intrusion Prevention System, Australian Journal of Basic &Amp
[3] Applied Sciences, 8, 14, pp. 34-39, (2014)
[4] pp. 1-12, (2013)
[5] Symantec Corporation: United States, pp. 1-58, (2013)
[6] Jawdekar A., Richariya V., Richariya V., Minimization of False Alarm Prediction in IDS Based On Frequent Pattern Mining, International Journal of Emerging Technology and Advanced Engineering, 2, 4, pp. 511-514, (2012)
[7] Endsley M.R., Situation awareness global assessment technique (SAGAT), National Aerospace and Electronics Conference, pp. 789-795, (1988)
[8] Endsley M.R., Toward a theory of situation awareness in dynamic systems, The Journal of the Human Factors and Ergonomics Society, 37, 1, pp. 32-64, (1995)
[9] Endsley M.R., Et al., Situation awareness information requirements for commercial airline pilots, International Center for Air Transportation, pp. 1-7, (1998)
[10] Jajodia S., Et al., Cyber situational awareness, 14, pp. 3-14, (2010)

← 1 2 3 4 →