A realistic graph-based alert correlation system

被引:27
|
作者
Ben Fredj, Ouissem [1 ]
机构
[1] Taif Univ, At Taif, Saudi Arabia
来源
SECURITY AND COMMUNICATION NETWORKS | 2015年 / 8卷 / 15期
关键词
security; correlation; attack graph; Markov chain;
D O I
10.1002/sec.1190
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
This paper introduces a graph-based attack description that comes with different analysis methods for alert correlation. The system encompasses an attack scenario detection method, an alert correlation method that recognizes multistep attacks, and graph-based classification method to extract different types of alerts. The performance analysis shows that the system can correlate a huge number of alerts (more than 442000 alerts) into a dozens of attack graphs. The attack graph has permitted us to extract several attack properties with high precision. Copyright (c) 2015 John Wiley & Sons, Ltd.
引用
收藏
页码:2477 / 2493
页数:17
相关论文
共 50 条
  • [1] A New Alert Correlation Algorithm Based on Attack Graph
    Roschke, Sebastian
    Cheng, Feng
    Meinel, Christoph
    COMPUTATIONAL INTELLIGENCE IN SECURITY FOR INFORMATION SYSTEMS, 2011, 6694 : 58 - 67
  • [2] High-quality attack graph-based IDS correlation
    Roschke, Sebastian
    Cheng, Feng
    Meinel, Christoph
    LOGIC JOURNAL OF THE IGPL, 2013, 21 (04) : 571 - 591
  • [3] Graph-based Correlation of SNMP Objects for Anomaly Detection
    Zarpelao, Bruno Bogaz
    Mendes, Leonardo de Souza
    Proenca, Mario Lemes, Jr.
    INTERNATIONAL JOURNAL OF COMPUTER SCIENCE AND NETWORK SECURITY, 2006, 6 (5B): : 194 - 202
  • [4] A graph-based system for network-vulnerability analysis
    Phillips, C
    Swiler, LP
    NEW SECURITY PARADIGMS WOEKSHOP, PROCEEDINGS, 1999, : 71 - 79
  • [5] A Graph-Based Technique for Securing the Distributed Cyber-Physical System Infrastructure
    Kalinin, Maxim
    Zavadskii, Evgenii
    Busygin, Alexey
    SENSORS, 2023, 23 (21)
  • [6] Graph-Based Intrusion Detection System for Controller Area Networks
    Islam, Riadul
    Refat, Rafi Ud Daula
    Yerram, Sai Manikanta
    Malik, Hafiz
    IEEE TRANSACTIONS ON INTELLIGENT TRANSPORTATION SYSTEMS, 2022, 23 (03) : 1727 - 1736
  • [7] Graph-Based Symmetric Crypto-System for Data Confidentiality
    Mishra, Alekha Kumar
    Obaidat, Mohammad S.
    Puthal, Deepak
    Tripathy, Asis Kumar
    Choo, Kim-Kwang Raymond
    2018 IEEE GLOBAL COMMUNICATIONS CONFERENCE (GLOBECOM), 2018,
  • [8] A Probabilistic Graph-Based Method to Improve Recommender System Accuracy
    Joorabloo, Nima
    Jalili, Mandi
    Ren, Yongli
    ENGINEERING APPLICATIONS OF NEURAL NETWORKSX, 2019, 1000 : 151 - 163
  • [9] Building network attack graph for alert causal correlation
    Zhang, Shaojun
    Li, Jianhua
    Chen, Xiuzhen
    Fan, Lei
    COMPUTERS & SECURITY, 2008, 27 (5-6) : 188 - 196
  • [10] Classification with Graph-Based Markov Chain
    He, Ping
    Xu, Xiaohua
    NATURE-INSPIRED COMPUTATION AND MACHINE LEARNING, PT II, 2014, 8857 : 310 - 318
12345