论文信息 - An Intrusive Intention Recognition Model Based on Network Security States Graph

An Intrusive Intention Recognition Model Based on Network Security States Graph

Intrusive intention is the high level goal of an attacker that he want to achieve. To identify the real intentions of an attacker can support decision-making of the network security administrator. In this paper a method based on network security states graph to recognize intrusive intention is presented. Algorithms of intention recognition and threat assessment offer a way to assess the network security situation. Feasibility and validity of this method are proved from the experiments.

Wu Peng | Zhigang Wang

[1] Wenke Lee,et al. Attack plan recognition and prediction using causal networks , 2004, 20th Annual Computer Security Applications Conference.

[2] Shi Cui-xia. Network Security Risk Analysis Based on Simulation Attacks , 2008 .

[3] Frédéric Cuppens,et al. Recognizing Malicious Intention in an Intrusion Detection Process , 2002, HIS.

[4] D. Dennett. The Intentional Stance. , 1987 .

[5] Hung Hai Bui,et al. A General Model for Online Probabilistic Plan Recognition , 2003, IJCAI.

[6] Ming-Yuh Huang,et al. A large scale distributed intrusion detection framework based on attack strategy analysis , 1999, Comput. Networks.

[7] C. Heinze. Modelling Intention Recognition for Intelligent Agent Systems , 2004 .

[8] Svetha Venkatesh,et al. Policy Recognition in the Abstract Hidden Markov Model , 2002, J. Artif. Intell. Res..

[9] Peng Ning,et al. Learning attack strategies from intrusion alerts , 2003, CCS '03.