Generating attack pattern automatically based on decision classification tree in storage-based IDS

Jing Feng Xue*, Jian Li, Yuan Da Cao, Gang Shu

*Corresponding author for this work

Research output: Contribution to journalArticlepeer-review

1 Citation (Scopus)

Abstract

To obtain reusable attack pattern for storage-based intrusion detection system, the theory of attack model was applied to build attack model, the attack tree model was extended and the algorithm of decision classification tree was proposed. The algorithm was applied in storage-based intrusion detection system to describe attack efficiency and attack pattern could be generated automatically. In the experiment, four kinds of type attack data and normal data in storage operation flow were collected and corresponding attack pattern were generated. In the training dataset, The detection rate can reach 95.72% and the false alarm rate is only 24.25%. The experimental results show that efficient attack pattern for storage-based intrusion detection can be generated automatically by the algorithm.

Original languageEnglish
Pages (from-to)51-55
Number of pages5
JournalTongxin Xuebao/Journal on Communications
Volume29
Issue numberSUPPL.
Publication statusPublished - Nov 2008

Keywords

  • Attack pattern
  • Decision classification tree
  • Intrusion detection
  • Storage

Fingerprint

Dive into the research topics of 'Generating attack pattern automatically based on decision classification tree in storage-based IDS'. Together they form a unique fingerprint.

Cite this

Xue, J. F., Li, J., Cao, Y. D., & Shu, G. (2008). Generating attack pattern automatically based on decision classification tree in storage-based IDS. Tongxin Xuebao/Journal on Communications, 29(SUPPL.), 51-55.