{"title":"Architecture of distributed intrusion detection system based on anomalies","authors":"A. Baláz, J. Trelová, M. Kostrab","doi":"10.1109/INES.2010.5483870","DOIUrl":null,"url":null,"abstract":"The designed architecture of intrusion detection system uses a two-layer hybrid model for detecting intrusions. The system processes network flows in real communication operation and provides processing of these data in real time. First layer consists of detection sensors which provide basic processing of input data based on statistical methods with a direct connection to countermeasure modules. Performance and accuracy of the designed system is ensured with central distributed processing, in which the detection of generalized description of partial ordered events is used, preventing the intrusion itself. By this the attack variability of the same type are provided.","PeriodicalId":118326,"journal":{"name":"2010 IEEE 14th International Conference on Intelligent Engineering Systems","volume":"80 2-3 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2010-05-05","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"5","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2010 IEEE 14th International Conference on Intelligent Engineering Systems","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/INES.2010.5483870","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 5
Abstract
The designed architecture of intrusion detection system uses a two-layer hybrid model for detecting intrusions. The system processes network flows in real communication operation and provides processing of these data in real time. First layer consists of detection sensors which provide basic processing of input data based on statistical methods with a direct connection to countermeasure modules. Performance and accuracy of the designed system is ensured with central distributed processing, in which the detection of generalized description of partial ordered events is used, preventing the intrusion itself. By this the attack variability of the same type are provided.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
