Cart (Loading....) | Create Account
Close category search window
 

Guessing strategy for improving intrusion detections

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Formats Non-Member Member
$31 $13
Learn how you can qualify for the best price for this item!
Become an IEEE Member or Subscribe to
IEEE Xplore for exclusive pricing!
close button

puzzle piece

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

1 Author(s)
Nehinbe, J.O. ; Sch. of Comput. Sci. & Electron. Eng. Syst., Univ. of Essex, Colchester, UK

Intrusion detectors isolate intrusions based on allowable and disallowable activities. The disallowable policy enforcers will alert only on events that are known to be bad while the allowable policy enforcer will alert on events that deviate from those that have been classified as good. However, these trade-offs become difficult to balance in a recent time due to the complexity of computer attacks. Accordingly, intrusion detectors generate tons of alerts that may signify realistic and false attacks. Most often, failed attacks are erroneously predicted and processed while classification trees that should have given detail descriptions of each clusters of the attacks are poorly constructed. This is because the qualities of clustering schemes that are generated are not evaluated with an appropriate model. Consequently, attacks in progress are not forestalled despite alerts that intrusion detectors generate beforehand. Therefore, this paper presents category utility paradigm for showing a good way of using clustering algorithm to partition audit trails. Series of evaluations showed how to adopt guessing strategy to improve the efficacy of intrusion detections.

Published in:

Computer Science and Electronic Engineering Conference (CEEC), 2010 2nd

Date of Conference:

8-9 Sept. 2010

Need Help?


IEEE Advancing Technology for Humanity About IEEE Xplore | Contact | Help | Terms of Use | Nondiscrimination Policy | Site Map | Privacy & Opting Out of Cookies

A not-for-profit organization, IEEE is the world's largest professional association for the advancement of technology.
© Copyright 2014 IEEE - All rights reserved. Use of this web site signifies your agreement to the terms and conditions.