A Security Event Management Framework Using Wavelet and Data-Mining Technique
As the rapid increase of network security events, network security monitoring and management on network behavior become more and more focused in the fields of computer science. This paper develops a kind of network security management framework using collection, analysis and integration, event-correlation and scenario-analysis technique to process the raw data gathered from hybrid network. Datamining and wavelet technology are introduced into this framework, which can rapidly identify the types of security events from integrated information by using frequent episodes, wavelet and case-based reasoning. By these means, it can help to analyze the status of network security and then adjust the strategy to secure the network. We have implemented a prototype system following this framework, which can rapidly react to typical security events with visual output of result.
Lan Liu Zhitang Li Ling Xu Huajun Chen
Dept of Computer Architecture Hua Zhong University of Science and Technology Wuhan, Hubei, China;Dep Dept of Computer Architecture Hua Zhong University of Science and Technology Wuhan, Hubei, China Dept of Electronic Information GuangDong Polytechnic Normal University Guangzhou, Guangdong, China
国际会议
2006 International Conference on Communications,Circuits and Systems(第四届国际通信、电路与系统学术会议)
广西桂林
英文
1566-1569
2006-06-25(万方平台首次上网日期,不代表论文的发表时间)