摘要
To obtain reusable attack pattern for storage-based intrusion detection system, the theory of attack model was applied to build attack model, the attack tree model was extended and the algorithm of decision classification tree was proposed. The algorithm was applied in storage-based intrusion detection system to describe attack efficiency and attack pattern could be generated automatically. In the experiment, four kinds of type attack data and normal data in storage operation flow were collected and corresponding attack pattern were generated. In the training dataset, The detection rate can reach 95.72% and the false alarm rate is only 24.25%. The experimental results show that efficient attack pattern for storage-based intrusion detection can be generated automatically by the algorithm.
源语言 | 英语 |
---|---|
页(从-至) | 51-55 |
页数 | 5 |
期刊 | Tongxin Xuebao/Journal on Communications |
卷 | 29 |
期 | SUPPL. |
出版状态 | 已出版 - 11月 2008 |