A realistic graph-based alert correlation system

被引:27
|
作者
Ben Fredj, Ouissem [1 ]
机构
[1] Taif Univ, At Taif, Saudi Arabia
来源
SECURITY AND COMMUNICATION NETWORKS | 2015年 / 8卷 / 15期
关键词
security; correlation; attack graph; Markov chain;
D O I
10.1002/sec.1190
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
This paper introduces a graph-based attack description that comes with different analysis methods for alert correlation. The system encompasses an attack scenario detection method, an alert correlation method that recognizes multistep attacks, and graph-based classification method to extract different types of alerts. The performance analysis shows that the system can correlate a huge number of alerts (more than 442000 alerts) into a dozens of attack graphs. The attack graph has permitted us to extract several attack properties with high precision. Copyright (c) 2015 John Wiley & Sons, Ltd.
引用
收藏
页码:2477 / 2493
页数:17
相关论文
共 50 条
  • [41] A Knowledge Graph-Based Survey on Distributed Ledger Technology for IoT Verticals
    Xu, Rongxin
    Lan, Qiujun
    Pokhrel, Shiva Raj
    Li, Gang
    ACM COMPUTING SURVEYS, 2024, 56 (02)
  • [42] ObservableDB: An Inverted Index for Graph-Based Traversal of Cyber Threat Intelligence
    Tovarnak, Daniel
    Cech, Michal
    Tichy, Dusan
    Dohnal, Vojtech
    PROCEEDINGS OF THE IEEE/IFIP NETWORK OPERATIONS AND MANAGEMENT SYMPOSIUM 2022, 2022,
  • [43] Graph-Based Generalization of Galam Model: Convergence Time and Influential Nodes
    Li, Sining
    Zehmakan, Ahad N.
    PHYSICS, 2023, 5 (04): : 1094 - 1108
  • [44] Pre-Demosaic Graph-Based Light Field Image Compression
    Chao, Yung-Hsuan
    Hong, Haoran
    Cheung, Gene
    Ortega, Antonio
    IEEE TRANSACTIONS ON IMAGE PROCESSING, 2022, 31 : 1816 - 1829
  • [45] Extending Attack Graph-Based Metrics for Enterprise Network Security Management
    Bopche, Ghanshyam S.
    Mehtre, Babu M.
    PROCEEDINGS OF 3RD INTERNATIONAL CONFERENCE ON ADVANCED COMPUTING, NETWORKING AND INFORMATICS, ICACNI 2015, VOL 2, 2016, 44 : 315 - 325
  • [46] Attack Graph-based Solution for Vulnerabilities Impact Assessment in Dynamic Environment
    Boudermine, Antoine
    Khatoun, Rida
    Choyer, Jean-Henri
    2022 5TH CONFERENCE ON CLOUD AND INTERNET OF THINGS, CIOT, 2022, : 24 - 31
  • [47] Graph-Based Dynamic Modeling and Traffic Prediction of Urban Road Network
    Liu, Tao
    Jiang, Aimin
    Miao, Xiaoyu
    Tang, Yibin
    Zhu, Yanping
    Kwan, Hon Keung
    IEEE SENSORS JOURNAL, 2021, 21 (24) : 28118 - 28130
  • [48] An Android Based Security Alert System for Female
    Sharmin, Sanjida
    Khaliluzzaman, Md.
    Khatun, Sayeda Fauzia
    Khanam, Shajeda
    2016 INTERNATIONAL WORKSHOP ON COMPUTATIONAL INTELLIGENCE (IWCI), 2016, : 11 - 14
  • [49] Wave2Graph: Integrating spectral features and correlations for graph-based learning in sound waves
    Hoang, Van-Truong
    Tran, Khanh-Tung
    Vu, Xuan-Son
    Nguyen, Duy-Khuong
    Bhuyan, Monowar
    Nguyen, Hoang D.
    AI OPEN, 2024, 5 : 115 - 125
  • [50] Graph-Based Blind Hyperspectral Unmixing via Nonnegative Matrix Factorization
    Rathnayake, Bhathiya
    Ekanayake, E. M. M. B.
    Weerakoon, Kasun
    Godaliyadda, G. M. R. I.
    Ekanayake, M. P. B.
    Herath, H. M. V. R.
    IEEE TRANSACTIONS ON GEOSCIENCE AND REMOTE SENSING, 2020, 58 (09): : 6391 - 6409
12345