Merging Guaranteed Possibilistic Bases to Rank IDS Alerts

被引：0

作者：

Bouzar-Benlabiod, Lydia ^{[1
]}

Meziani, Lila ^{[1
]}

Rim, Nacer-Eddine ^{[1
]}

Mellal, Zakaria ^{[1
]}

机构：

[1] Ecole Natl Super Informat, Lab Commun Syst Informat, BP 68M, Oued Smar 16309, Alger, Algeria

来源：

RECENT TRENDS AND FUTURE TECHNOLOGY IN APPLIED INTELLIGENCE, IEA/AIE 2018 | 2018年 / 10868卷

关键词：

IDS alerts; Preferences merging; Guaranteed possibilistic logic; IFO formulas;

D O I：

10.1007/978-3-319-92058-0_27

中图分类号：

TP18 [人工智能理论];

学科分类号：

081104 ; 0812 ; 0835 ; 1405 ;

摘要：

Intrusion Detection Systems (IDS) are security tools that generate alerts when detecting a malicious activity. The main drawback of IDS is the high number of generated alerts. We propose an approach that integrates the preferences of several security experts to rank IDS results. The experts' preferences are expressed either in IFO-BCF (Instantiated First Order) logic or in IFO-guaranteed possibilistic one. A new logical preferences merging algorithm is given, it takes in input the different experts' preferences and produces a unique preferences base. The resulted preferences base is used to rank the IDS alerts.

引用

页码：286 / 291

页数：6

共 50 条

[31] IDSRadar: a real-time visualization framework for IDS alerts
Zhao Ying
Zhou FangFang
Fan XiaoPing
Liang Xing
Liu YongGang
[J]. SCIENCE CHINA-INFORMATION SCIENCES, 2013, 56 (08) : 1 - 12
[32] An efficient approach to reduce alerts generated by multiple IDS products
Tu Hoang Nguyen
Luo, Jiawei
Njogu, Humphrey Waita
[J]. INTERNATIONAL JOURNAL OF NETWORK MANAGEMENT, 2014, 24 (03) : 153 - 180
[33] IDSRadar: a real-time visualization framework for IDS alerts
Ying Zhao
FangFang Zhou
XiaoPing Fan
Xing Liang
YongGang Liu
[J]. Science China Information Sciences, 2013, 56 : 1 - 12
[34] Correlation analysis system using VA data, IDS alerts
Lee, Jong-Hyouk
Chung, Tai-Myung
[J]. Advances in Computational Methods in Sciences and Engineering 2005, Vols 4 A & 4 B, 2005, 4A-4B : 1600 - 1603
[35] Training MLP Neural Network to Reduce False Alerts in IDS
Barapatre, Prachi
Tarapore, N. Z.
Pukale, S. G.
Dhore, M. L.
[J]. ICCN: 2008 INTERNATIONAL CONFERENCE ON COMPUTING, COMMUNICATION AND NETWORKING, 2008, : 318 - 324
[36] IDS alerts correlation using grammar-based approach
Al-Mamory, Safaa O.
Zhang, Hongli
[J]. JOURNAL OF COMPUTER VIROLOGY AND HACKING TECHNIQUES, 2009, 5 (04): : 271 - 282
[37] An IDS Alerts Aggregation Algorithm Based on Rough Set Theory
Zhang, Ru
Guo, Tao
Liu, Jianyi
[J]. 2017 INTERNATIONAL SYMPOSIUM ON APPLICATION OF MATERIALS SCIENCE AND ENERGY MATERIALS (SAMSE 2017), 2018, 322
[38] Analysis of IDS alerts by generalising features and discovering emerging patterns
Maleki, Mahdi
Shahidi, Seyed Mansour
[J]. International Journal of Reasoning-based Intelligent Systems, 2022, 14 (01): : 56 - 65
[39] On the use of possibilistic bases for local computations in product-based possibilistic networks
Benferhat, Salem
Smaoui, Salma
[J]. ADVANCES IN ARTIFICIAL INTELLIGENCE, 2007, 4509 : 356 - +
[40] Cooperative Vehicle Merging with Guaranteed Collision Avoidance
Schwab, Alexander
Lunze, Jan
[J]. IFAC PAPERSONLINE, 2019, 52 (06): : 7 - 12

← 1 2 3 4 5 →