An Attack Predictive Algorithm Based on the Correlation of Intrusions Alerts in Intrusion Response
入侵响应中基于事件相关性的攻击预测算法

Traditional intrusion detection systems(IDSs)take actions to the alerts independently, and ignore the logi- cal connections between them. In this paper an attack predictive algorithm in intrusion response part of the IDS is pre- sented based on the prerequisites and consequences of intrusions. And an off-line simulation experiment shows that it can improve the prediction ability of the IDS, and reduce the false alert and find the potential attack.