论文信息 - A Prediction Model of Insider Threat Based on Multi-agent

A Prediction Model of Insider Threat Based on Multi-agent

Current intrusion detection systems are almost unable to repel the threats from internal users of organizations. In order to mitigate insider threat availably, in the paper we present a multi-agent based predicting and detecting model and describe implementation algorithm of related agents. It can continually report the attack probability of an attacker to system administrators, and provide a quantitative approach to help administrators make sound decision

Shufen Liu | Hui Wang | Xinjia Zhang

[1] 曹元大,et al. Generating IDS Attack Pattern Automatically Based on Attack Tree , 2003 .

[2] Paul Ammann,et al. Using model checking to analyze network vulnerabilities , 2000, Proceeding 2000 IEEE Symposium on Security and Privacy. S&P 2000.

[3] Kevin A. Kwiat,et al. An analytical framework for reasoning about intrusions , 2001, Proceedings 20th IEEE Symposium on Reliable Distributed Systems.

[4] Martin P. Loeb,et al. CSI/FBI Computer Crime and Security Survey , 2004 .

[5] Richard A. Wasniowski. Multisensor Agent Based Intrusion Detection , 2005, WEC.

[6] Wanli Ma,et al. A Multiple Agents Based Intrusion Detection System , 2005, KES.

[7] Fabio A. González,et al. CIDS: An agent-based intrusion detection system , 2005, Comput. Secur..

[8] Keven G. Ruby,et al. The Insider Threat to Information Systems , 2022 .

[9] Csilla Farkas,et al. PAID: A Probabilistic Agent-Based Intrusion Detection system , 2005, Comput. Secur..

[10] Shambhu Upadhyaya,et al. Towards the scalable implementation of a user level anomaly detection system , 2002, MILCOM 2002. Proceedings.

[11] Xiang Ga. Generating IDS Attack Pattern Automatically Based on Attack Tree , 2003 .