Time series modeling for IDS alert management
暂无分享,去创建一个
Hervé Debar | Renaud Séguier | Ludovic Mé | Jouni Viinikka | L. Mé | Hervé Debar | Jouni Viinikka | R. Séguier
[1] Marc Dacier,et al. Mining intrusion detection alarms for actionable knowledge , 2002, KDD.
[2] Heikki Mannila,et al. Discovering Frequent Episodes in Sequences , 1995, KDD.
[3] Hervé Debar,et al. Evaluation of the Diagnostic Capabilities of Commercial Intrusion Detection Systems , 2002, RAID.
[4] Wenke Lee,et al. Statistical Causality Analysis of INFOSEC Alert Data , 2003, RAID.
[5] Paul Barford,et al. A signal analysis of network traffic anomalies , 2002, IMW '02.
[6] Stefanos Manganaris,et al. A Data Mining Analysis of RTID Alarms , 2000, Recent Advances in Intrusion Detection.
[7] Hervé Debar,et al. Monitoring IDS Background Noise Using EWMA Control Charts and Alert Information , 2004, RAID.
[8] Richard A. Davis,et al. Introduction to time series and forecasting , 1998 .
[9] Qiang Chen,et al. Computer intrusion detection through EWMA for autocorrelated and uncorrelated data , 2003, IEEE Trans. Reliab..
[10] Alfonso Valdes,et al. A Mission-Impact-Based Approach to INFOSEC Alarm Correlation , 2002, RAID.
[11] Hervé Debar,et al. Aggregation and Correlation of Intrusion-Detection Alerts , 2001, Recent Advances in Intrusion Detection.
[12] Douglas S. Reeves,et al. Detection of Denial-of-QoS Attacks Based On χ Statistic And EWMA Control Charts , 2002 .
[13] Stefan Axelsson,et al. The base-rate fallacy and its implications for the difficulty of intrusion detection , 1999, CCS '99.
[14] Christopher Krügel,et al. Alert Verification Determining the Success of Intrusion Attempts , 2004, DIMVA.
[15] Alfonso Valdes,et al. Probabilistic Alert Correlation , 2001, Recent Advances in Intrusion Detection.
[16] Connie M. Borror,et al. EWMA techniques for computer intrusion detection through anomalous changes in event intensity , 2002 .
[17] Richard A. Davis,et al. Time Series: Theory and Methods , 2013 .
[18] Klaus Julisch,et al. Mining alarm clusters to improve alarm handling efficiency , 2001, Seventeenth Annual Computer Security Applications Conference.
[19] G. Box,et al. On a measure of lack of fit in time series models , 1978 .