KISTI repository
BROWSE
download0
view780
This item is licensed Korea Open Government License
- Title
- An Advanced Security Event Visualization Method for Identifying Real Cyber Attacks
- Author(s)
- 송중석
- Publication Year
- 2013-12-31
- Abstract
-
Most organizations deploy and operate intrusion detection system (IDS) on their networks in order to defend their vital computer and network resources from malicious cyber attackers. Although IDS has been contributed to the improvement of network security, there is a fatal problem in that it records the tremendous amount of alerts, so that security operators are unable to deal with all of them and it is inevitable to miss real cyber attacks from the recorded IDS alerts. Many visualization methods of IDS alerts have been proposed in order to cope with this issue, but their main objective is to better understand only overall attack situations, not to detect real cyber attacks.
In this paper, we propose an advanced visualization method of IDS alerts based on machine learning and statistical features derived from IDS alerts. The proposed visualization method can be contributed to the reduction of IDS alerts that must be analyzed by security operators and to effectively identify real cyber attacks from IDS alerts.
- Keyword
- Visualization; Security Event; Machine Learning; Statistical Features; Real Cyber Attacks
- Journal Title
- Applied mathematics & information sciences : an international journal
- ISSN
- 1935-0090
- Files in This Item:
- There are no files associated with this item.
- Appears in Collections:
- 7. KISTI 연구성과 > 학술지 발표논문
