期刊文献+
任意字段
题名或关键词
题名
关键词
文摘
作者
第一作者
机构
刊名
分类号
参考文献
作者简介
基金资助
栏目信息

一种集成化网络安全事件关联分析模型

A Correlation Analysis Model of the Integrated Network Security Incident
下载PDF
导出
摘要 针对当前分布在网络中的各种安全设备海量的报警信息,导致管理员很难从中获取有用信息的问题,文章给出了一种集成化的网络安全事件关联分析模型,并对安全事件关联流程进行了详细的描述。 Currently,there are various kinds of warning messages about the safety equipment on the internet.This situation has made it difficult for the administrators to obtain useful messages.To solve this problem,this article offers a correlation analysis model of the integrated network security incident and makes a detailed description of the process of the security incident relations.
作者 涂豫
机构地区 河南工业职业技术学院
出处 《信息安全与技术》 2011年第5期33-35,共3页
关键词 事件关联 代理 知识库 incident relations deputy knowledge base
分类号 TP393.08 [自动化与计算机技术—计算机应用技术]
  • 相关文献

参考文献2

二级参考文献15

  • 1[1]Poirk Y. Event Correlation. IEEE Potentials, 2001,20(2): 34~35
  • 2[2]Ye Nong, Li Xiaoyang, Chen Qiang, et al. Probabilistic techniques for intrusion detection based on computes audit data. IEEE Transactions on System, Man, and Cybernetics, 2001, 31(4): 266~274
  • 3HAINES J, RYDER DK. Validation of sensor alert correlators[J].IEEE Security & Privacy, 2003, 1(1):46 -56.
  • 4KLIGER S, YEMINI S. A coding approach to event correlation[A].Proceedings of 4th International Symposium on Integrated Network Management (IFIP/IEEE) [C]. Santa Barbara, CA, 1995.
  • 5GRUSCHKE B. Integrated event management: event correlation using dependency graphs[A].DSOM'98[C], 1998.
  • 6HASAN M, SUGLA B, VISWANATHAN R. A conceptual framework for network management event correlation and filtering systems[A]. Proceedings of the Sixth IFIP/IEEE International Symposium on Integrated Management[C], 1999.
  • 7LIU G, MOK AK, YANG EJ. Composite event for network event correlation[A]. Proceedings of IM'99[C], 1999.
  • 8OHSIE D, MAYER A, KLIGER S, Event modeling with the MODEL language: A tutorial introduction[EB/OL], http://www. smarts.com/resources/code-tpapers-model.pdf, 2004 - 12.
  • 9CUPPENS F, MIEGE A. Alert correlation in a cooperative intrusion detection framework[A]. Proceedings of the 2002 IEEE Symposium on Security and Privacy[C], 2002.
  • 10GULA R. Correlating IDS alerts with vulnerability information[EB/OL]. http://www. tenablesecurity. com/white-papers/va-ids. pdf,2004 - 12.

共引文献15

信息安全与技术
2011年 第5期

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部