download0 view144
twitter facebook

공공누리This item is licensed Korea Open Government License

Title
An Advanced Security Event Visualization Method for Identifying Real Cyber Attacks
Author(s)
송중석
Publication Year
2013-12-31
Abstract
Most organizations deploy and operate intrusion detection system (IDS) on their networks in order to defend their vital computer and network resources from malicious cyber attackers. Although IDS has been contributed to the improvement of network security, there is a fatal problem in that it records the tremendous amount of alerts, so that security operators are unable to deal with all of them and it is inevitable to miss real cyber attacks from the recorded IDS alerts. Many visualization methods of IDS alerts have been proposed in order to cope with this issue, but their main objective is to better understand only overall attack situations, not to detect real cyber attacks.
In this paper, we propose an advanced visualization method of IDS alerts based on machine learning and statistical features derived from IDS alerts. The proposed visualization method can be contributed to the reduction of IDS alerts that must be analyzed by security operators and to effectively identify real cyber attacks from IDS alerts.
Keyword
Visualization; Security Event; Machine Learning; Statistical Features; Real Cyber Attacks
Journal Title
Applied mathematics & information sciences : an international journal
ISSN
1935-0090
Files in This Item:
There are no files associated with this item.
Appears in Collections:
7. KISTI 연구성과 > 학술지 발표논문
URI
https://repository.kisti.re.kr/handle/10580/14130
http://www.ndsl.kr/ndsl/search/detail/article/articleSearchResultDetail.do?cn=NART82448758
Export
RIS (EndNote)
XLS (Excel)
XML

Browse