Name
Title | ||
|---|---|---|
Anti-correlation as a criterion to select appropriate counter-measures in an intrusion detection framework |
Abstract | ||
|---|---|---|
Since current computer infrastructures are increasingly vulnerable to malicious activities, intrusion detection is necessary but unfortunately not sufficient. We need to design effective response techniques to circumvent intrusions when they are detected. Our approach is based on a library that implements different types of counter-measures. The idea is to design a decision support tool to help the administrator to choose, in this library, the appropriate counter-measure when a given intrusion occurs. For this purpose, we formally define the notion of anti-correlation which is used to determine the counter-measures that are effective to stop the intrusion. Finally, we present a platform of intrusion detection that implements the response mechanisms presented in this paper. |
Year | DOI | Venue |
|---|---|---|
2006 | 10.1007/BF03219974 | Annales des Télécommunications |
Keywords | Field | DocType |
intrusion detection | Logic model,Intrusion,Computer security,Decision support system,Information protection policy,Anomaly-based intrusion detection system,Intrusion prevention system,Intrusion detection system,Mathematics | Journal |
Volume | Issue | ISSN |
61 | 1-2 | 1958-9395 |
Citations | PageRank | References |
18 | 0.95 | 7 |
Authors | ||
6 | ||
Name | Order | Citations | PageRank |
|---|---|---|---|
| Frédéric Cuppens | 1 | 2146 | 258.58 |
| Fabien Autrel | 2 | 69 | 7.16 |
| Yacine Bouzida | 3 | 67 | 4.82 |
| Joaquín García-Alfaro | 4 | 219 | 37.23 |
| Sylvain Gombault | 5 | 98 | 10.56 |
| Thierry Sans | 6 | 171 | 12.92 |