A Semantic Approach to Situational Awareness for Intrusion Detection
dc.contributor.author | More, Sumit | |
dc.contributor.author | Mathews, M. Lisa | |
dc.contributor.author | Joshi, Anupam | |
dc.contributor.author | Finin, Tim | |
dc.date.accessioned | 2018-11-05T17:05:55Z | |
dc.date.available | 2018-11-05T17:05:55Z | |
dc.date.issued | 2012-06-11 | |
dc.description.abstract | We describe a situation-aware intrusion detection system that integrates heterogeneous sources of information to build and maintain a semantically rich knowledge-base about cyber threats and vulnerabilities. Most current intrusion detection and prevention systems rely on signature-based approaches to detect attacks. When an attack signature is not available, such as for a new exploit or a significantly modified known one, such systems are much less effective. Moreover, these intrusion detection systems are point-based solutions which do not make effective use of heterogeneous data sources, which can provide important information related to intrusions which are not yet available as signature patterns. This information can also help detect low-and-slow attacks in which small intrusions that are spatially and temporally apart combine to build a more elaborate attack. | en_US |
dc.description.uri | https://ebiquity.umbc.edu/paper/html/id/594/A-Semantic-Approach-to-Situational-Awareness-for-Intrusion-Detection | en_US |
dc.format.extent | 1 page | en_US |
dc.genre | posters | en_US |
dc.identifier | doi:10.13016/M2M61BT50 | |
dc.identifier.citation | Sumit More, M. Lisa Mathews, Anupam Joshi, and Tim Finin, A Semantic Approach to Situational Awareness for Intrusion Detection, Proceedings of the National Symposium on Moving Target Research, June 2012. | en_US |
dc.identifier.uri | http://hdl.handle.net/11603/11865 | |
dc.language.iso | en_US | en_US |
dc.publisher | National Coordination Office for Networking and Information Technology Research and Development | en_US |
dc.relation.isAvailableAt | The University of Maryland, Baltimore County (UMBC) | |
dc.relation.ispartof | UMBC Computer Science and Electrical Engineering Department Collection | |
dc.relation.ispartof | UMBC Faculty Collection | |
dc.rights | This item is likely protected under Title 17 of the U.S. Copyright Law. Unless on a Creative Commons license, for uses protected by Copyright Law, contact the copyright holder or the author. | |
dc.subject | cybersecurity | en_US |
dc.subject | intrusion detection | en_US |
dc.subject | Semantic | en_US |
dc.subject | UMBC Ebiquity Research Group | en_US |
dc.title | A Semantic Approach to Situational Awareness for Intrusion Detection | en_US |
dc.type | Text | en_US |