We found a match
Your institution may have access to this item. Find your institution then sign in to continue.
- Title
内网环境下基于时空事件关联的攻击检测方法.
- Authors
孙伟; 张鹏; 何永全; 邢丽超
- Abstract
In view of the fact that a single event as an attack detection feature leads to a higher false positive rate, an intranet attack detection method using Bayesian network model for cross-space event correlation and Kalman filter linear model for cross-temporal event correlation was proposed. Based on the method, a process query system was implemented, which can scan and correlate distributed network events according to the user's high-level process description. Experimental analysis show that the proposed method can significantly reduce the false positive rate of intranet attack detection without increasing the computational overhead.
- Publication
Journal on Communication / Tongxin Xuebao, 2020, Vol 41, Issue 1, p33
- ISSN
1000-436X
- Publication type
Article
- DOI
10.11959/j.issn.1000−436x.2020001