会议专题

A Multiple Keyword Fusion Scheme for P2P IDS Alert

查看全文→
Alert fusion is a key problem in distributed intrusion detection system(DIDS).The paper proposes a distributed intrusion alert fusion scheme based on multiple keywords and routing infrastructure: distributed hash table(DHT).All the related alerts produced by local sensor can be routed and fused to their corresponding peers by multiple keywords,while evenly distributing unrelated alerts to different peer.We evaluation our scheme with a real-world intrusion detection dataset(DShield Dataset),which has been collected firewall and NIDS logs from over 1600 administrators across the world.Experimental results show that our scheme has well scalable,and can achieve significant improvement in load balancing.

Ming Xu Chaochi Lin Qin Chen

Institute of Computer Application Technology,HangZhou Dianzi University,P.R.China

国际会议

第一届智能网络与智能系统国际会议(ICINIS 2008)(The First International Conference on Intelligent Networks and Intelligent Systems)

武汉

英文

2008-11-01(万方平台首次上网日期,不代表论文的发表时间)