An e-intelligence approach to e-commerce intrusion detection
暂无分享,去创建一个
As enterprise level e-commerce applications are integrated over the Internet, security has become an increasingly important issue. Under this new integrated Web services environment, simple black-and-white logic is not sufficient to deal with complex intrusion detection problems. E-intelligence must be added into the application layer for a better detection of malicious intruders using legitimate channels to attack mission-critical applications. A new e-intelligence approach is proposed in this paper, which uses the fuzz trust model and e-intelligence to detect the intrusions. It also uses honey token for deception and honey application for learning the behavior from attackers, and then feed the information back to the system at the application level.
[1] Gary McGraw,et al. On Bricks and Walls: Why Building Secure Software is Hard , 2002, Computers & security.
[2] David C. Luckham,et al. Enlisting event patterns for cyber battlefield awareness , 2000, Proceedings DARPA Information Survivability Conference and Exposition. DISCEX'00.
[3] Qiming Chen,et al. Managing security policy in a large distributed Web services environment , 2003, Proceedings 27th Annual International Computer Software and Applications Conference. COMPAC 2003.