Intrusion Correlation Using Ontologies and Multi-agent Systems

被引:0
|
作者
Isaza, Gustavo [1 ]
Castillo, Andres [2 ]
Lopez, Marcelo [1 ]
Castillo, Luis [3 ]
Lopez, Manuel [1 ]
机构
[1] Univ Caldas, Syst & Informat Dept, St 65 26-10, Manizales, Colombia
[2] Univ Salamanca, Language Informat Syst & Software Engn, Madrid, Spain
[3] Univ Nacl Colombia, Dept Ind Engn, Bogota, Colombia
来源
INFORMATION SECURITY AND ASSURANCE | 2010年 / 76卷
关键词
Ontology; Intrusion Detection; Intrusion Prevention; Alert Correlation; Semantic IDS; SECURITY;
D O I
暂无
中图分类号
TP18 [人工智能理论];
学科分类号
081104 ; 0812 ; 0835 ; 1405 ;
摘要
This paper proposes an ontology model for representing intrusion detection events and prevention rules, integrating multiagent systems based on unsupervised and supervised techniques for classification, correlation and pattern recognition. The semantic model describes attacks signatures, reaction tasks, axioms with alerts communication and correlation; nevertheless we have developed the prevention architecture integrated with another security tools. This article focuses on the approach to incorporate semantic operations that facilitate alerts correlation process and providing the inference and reasoning to the ontology model.
引用
收藏
页码:51 / +
页数:3
相关论文
共 50 条
  • [1] Asynchronous alert correlation in multi-agent intrusion detection systems
    Gorodetsky, V
    Karsaev, O
    Samoilov, V
    Ulanov, A
    [J]. COMPUTER NETWORK SECURITY, PROCEEDINGS, 2005, 3685 : 366 - 379
  • [2] Using ontologies to formalize services specifications in multi-agent systems
    Breitman, KK
    Haendchen, A
    Haeusler, EH
    von Staa, A
    [J]. FORMAL APPROACHES TO AGENT-BASED SYSTEMS, 2005, 3228 : 92 - 110
  • [3] Ontologies for competence description in multi-agent systems
    Cicortas, Alexandru
    Iordan, Victoria
    Naaji, Antoanela
    [J]. MMACTEE' 08: PROCEEDINGS OF THE 10TH WSEAS INTERNATIONAL CONFERENCE MATHERMATICAL METHODS AND COMPUTATIONAL TECHNIQUES IN ELECTRICAL ENGINEERING: COMPUTATIONAL METHODS AND INTELLIGENT SYSTEMS, 2008, : 100 - +
  • [4] Visualization of Ontologies in Multi-Agent Industrial Systems
    Obitko, Marek
    Vrba, Pavel
    Kadera, Petr
    Jirkovsky, Vaclav
    [J]. 2011 IEEE 16TH CONFERENCE ON EMERGING TECHNOLOGIES AND FACTORY AUTOMATION (ETFA), 2011,
  • [5] Ontologies for multi-agent systems in manufacturing domain
    Obitko, M
    Marík, V
    [J]. 13TH INTERNATIONAL WORKSHOP ON DATABASE AND EXPERT SYSTEMS APPLICATIONS, PROCEEDINGS, 2002, : 597 - 602
  • [6] Power systems simulation using ontologies to enable the interoperability of multi-agent systems
    Santos, Gabriel
    Silva, Francisco
    Teixeira, Brigida
    Vale, Zita
    Pinto, Tiago
    [J]. 2018 POWER SYSTEMS COMPUTATION CONFERENCE (PSCC), 2018,
  • [7] The Origins of Ontologies and Communication Conventions in Multi-Agent Systems
    Steels L.
    [J]. Autonomous Agents and Multi-Agent Systems, 1998, 1 (2) : 169 - 194
  • [8] Development of Ontologies for Reasoning and Communication in Multi-Agent Systems
    Toersleff, Sebastian
    Hildebrandt, Constantin
    Fay, Alexander
    [J]. KEOD: PROCEEDINGS OF THE 11TH INTERNATIONAL JOINT CONFERENCE ON KNOWLEDGE DISCOVERY, KNOWLEDGE ENGINEERING AND KNOWLEDGE MANAGEMENT - VOL 2: KEOD, 2019, : 450 - 457
  • [9] An Intrusion Detection and Prevention Model Based on Intelligent Multi-Agent Systems, Signatures and Reaction Rules Ontologies
    Isaza, Gustavo A.
    Castillo, Andres G.
    Duque, Nestor D.
    [J]. 7TH INTERNATIONAL CONFERENCE ON PRACTICAL APPLICATIONS OF AGENTS AND MULTI-AGENT SYSTEMS (PAAMS 2009), 2009, 55 : 237 - +
  • [10] A Multi-agent Approach for Intrusion Detection in Distributed Systems
    Forestiero, Agostino
    [J]. MULTIMEDIA COMMUNICATIONS, SERVICES AND SECURITY, MCSS 2015, 2015, 566 : 72 - 82
12345