Monitoring and Securing Virtualized Networks and Services
 2014
DOI: 10.1007/978-3-662-43862-6_19
|View full text |Cite
|
Sign up to set email alerts
|

Enhancing Network Intrusion Detection by Correlation of Modularly Hashed Sketches

Martin Drašar1,
Tomáš Jirsík2,
Martin Vizváry3

Abstract: Abstract. The rapid development of network technologies entails an increase in traffic volume and attack count. The associated increase in computational complexity for methods of deep packet inspection has driven the development of behavioral detection methods. These methods distinguish attackers from valid users by measuring how closely their behavior resembles known anomalous behavior. In real-life deployment, an attacker is flagged only on very close resemblance to avoid false positives. However, many attac… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
1

Citation Types

0
1
0

Year Published

2018
2018
2018
2018

Publication Types

Select...
1

Relationship

0
1

Authors

Journals

citations
Cited by 1 publication
(1 citation statement)
references
References 12 publications
0
1
0
Order By: Relevance
“…A NwCSA system relies on information from intrusion detection systems (IDS), antiviruses, malware detectors, logs, flows and other information sources. This raw information is transformed into events that are further processed [4], [5]. The number of 978-1-5386-3416-5/18/$31.00 c 2018 IEEE events is however still too high, and their processing is too labor-intensive to be processed manually.…”
Section: Network-wide Cyber Situational Awarenessmentioning
confidence: 99%

Toward real-time network-wide cyber situational awareness

Jirsík
1
,
Čeleda
2
2018
NOMS 2018 - 2018 IEEE/IFIP Network Operations and Management Symposium
11
0
9
0
View full textAdd to dashboardCite
show abstract
“…A NwCSA system relies on information from intrusion detection systems (IDS), antiviruses, malware detectors, logs, flows and other information sources. This raw information is transformed into events that are further processed [4], [5]. The number of 978-1-5386-3416-5/18/$31.00 c 2018 IEEE events is however still too high, and their processing is too labor-intensive to be processed manually.…”
Section: Network-wide Cyber Situational Awarenessmentioning
confidence: 99%

Toward real-time network-wide cyber situational awareness

Jirsík
1
,
Čeleda
2
2018
NOMS 2018 - 2018 IEEE/IFIP Network Operations and Management Symposium
11
0
9
0
View full textAdd to dashboardCite
show abstract
scite logo

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

Product
Browser ExtensionAssistant by sciteCitation Statement SearchReference CheckVisualizationsDashboardsExplore JournalsExplore OrganizationsExplore FundersEmbedding BadgeEmbedding Citation SearchPricing
Resources
BlogHelp & FAQAccessibility StatementAPI TermsFor Universities & GovernmentsFor ResearchersFor PublishersFor Corporate, Pharma & EnterpriseAuthor MarketingBecome an AffiliateGet an organization trial or quotescite Data & Services
About
News & PressCareersRead our PaperCoverage

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

BlogTerms and ConditionsAPI TermsPrivacy PolicyContactCookie PreferencesDo Not Sell or Share My Personal Information

Copyright © 2024 scite LLC. All rights reserved.

Made with 💙 for researchers

Part of the Research Solutions Family.