%0 Journal Article
%T Intrusion scenarios building based on hidden Markov models
基于隐马尔可夫模型的入侵场景构建
%A WANG Zhuo
%A FAN Jiu-lun
%A
王琢
%A 范九伦
%J 计算机应用研究
%D 2009
%I
%X This paper proposed an intrusion scenario building method using hidden Markov model, and carried out the goal of constructing higher level intrusion scenario automatically from numerous low-grade original intrusion detection alerts information. In order to simplify the treat process, the approach completed intrusion scenario building using the process of abstracting the data flow twice and backtracking it once on date streams. Experiment results on DARPA2000 IDS test dataset indicate that the proposed algorithm is efficient.
%K intrusion detection
%K hidden Markov models
%K intrusion scenarios
%K attack ontology
入侵检测
%K 隐马尔可夫模型
%K 入侵场景
%K 攻击本体
%U http://www.alljournals.cn/get_abstract_url.aspx?pcid=5B3AB970F71A803DEACDC0559115BFCF0A068CD97DD29835&cid=8240383F08CE46C8B05036380D75B607&jid=A9D9BE08CDC44144BE8B5685705D3AED&aid=42C417C35A44979CA4C469CB817277F8&yid=DE12191FBD62783C&vid=96C778EE049EE47D&iid=F3090AE9B60B7ED1&sid=0E639F80F599EEB9&eid=9B283381E9D324C1&journal_id=1001-3695&journal_name=计算机应用研究&referenced_num=0&reference_num=13