For Libraries For Publication Open Access Downloads About Us Contact Us
Paper Titles
Storage Model Based on Oracle InterMedia for Surveillance Video
p.3318
A Noise-Optimal Integrator for High-Precision SC Sigma Delta Modulators
p.3322
Research on Vehicle Networking Transfer Channel Based on MAC Safety Information System
p.3329
Application of Neural Network in Network Intrusion Detection
p.3334
The Study of the Ontology and Context Verification Based Intrusion Detection Model
p.3338
Environmental Monitoring System Designing: A Internet of Things Approach
p.3342
Remote Inspection System Algorithm Research of Wireless Base Station
p.3346
Application Research of Visual Simulation Technology in the Field of Marine Engine Room Simulator
p.3350
Application of Function Point Estimating
p.3357

The Study of the Ontology and Context Verification Based Intrusion Detection Model

Article Preview

Abstract:

During the 30-year development of the Intrusion Detection System, the problems such as the high false-positive rate have always plagued the users. Therefore, the ontology and context verification based intrusion detection model (OCVIDM) was put forward to connect the description of attack’s signatures and context effectively. The OCVIDM established the knowledge base of the intrusion detection ontology that was regarded as the center of efficient filtering platform of the false alerts to realize the automatic validation of the alarm and self-acting judgment of the real attacks, so as to achieve the goal of filtering the non-relevant positives alerts and reduce false positives.

You might also be interested in these eBooks
Machine Tool Technology, Mechatronics and Information Engineering View Preview

Info:

Periodical:

Applied Mechanics and Materials (Volumes 644-650)

Pages:

3338-3341

DOI:

https://doi.org/10.4028/www.scientific.net/AMM.644-650.3338

Citation:

Cite this paper

Online since:

September 2014

Authors:

Guang Feng Guo*

Keywords:

Context, Intrusion Detection, Non-Relevant Positives, Ontology

Export:

RIS, BibTeX

Price:

Permissions CCC:

Request Permissions

Permissions PLS:

Request Permissions

Сopyright:

© 2014 Trans Tech Publications Ltd. All Rights Reserved

Share:

Citation:

* - Corresponding Author

References

[1] DENNING DE. An Intrusion DetectionModel[J]. IEEE Transactions on Software Engineering, 1987, SE-13(2): 222-232.

Google Scholar

[2] Sommer R, Paxson V. Enhancing byte-level network intrusion detection signatures with context[C]/Proc of the 10th ACM Conf on Computer and Communications Security. New York: ACM . 2003: 262-271.

DOI: 10.1145/948109.948145

Google Scholar

[3] Jiang Jianchun, Qing Sihan. Network intrusion detection based on attack context[C]/Proc of NetSee 2005. Beijing: China Institute of Communications. 2005: 28-34.

Google Scholar

[4] Tian Zhihong, Wang Bailing, Zhang Weizhe, etc. Network Intrusion Detection Model Based on Context Verification[J]. Journal of Computer Research and Development. 2013, 50(3): 498-508.

Google Scholar

[5] Li wan. Intrusion alarm correlation based on ontology [D]. Beijing: doctoral dissertation of Beijing Jiaotong University. 2010. 6.

Google Scholar

[6] Steve Friedl. Analysis of the new Code Red II, Variant[EB/OL]. http: /www. unixwiz. net/ techtips/CodeRedII. html, 2011-8-22.

Google Scholar

[7] W3C. OWL 2 Web Ontology Language Document Overview (Second Edition) [EB/OL]. http: /www. w3. org/TR/owl2-overview/, (2012).

Google Scholar

[8] W3C. SWRL: A Semantic Web Rule Language Combining OWL and Rule ML [EB/OL]. http: /www. w3. org/Submission/2004/SUBM-SWRL-20040521/, 2004-5-21.

Google Scholar

© 2025 Trans Tech Publications Ltd. All rights are reserved, including those for text and data mining, AI training, and similar technologies. For open access content, terms of the Creative Commons licensing CC-BY are applied.
Scientific.Net is a registered trademark of Trans Tech Publications Ltd.