Suppr超能文献

一种用于蜜网数据的神经可视化 IDS。

A neural-visualization IDS for honeynet data.

机构信息

Department of Civil Engineering, University of Burgos, Burgos, Spain.

出版信息

Int J Neural Syst. 2012 Apr;22(2):1250005. doi: 10.1142/S0129065712500050.

Abstract

Neural intelligent systems can provide a visualization of the network traffic for security staff, in order to reduce the widely known high false-positive rate associated with misuse-based Intrusion Detection Systems (IDSs). Unlike previous work, this study proposes an unsupervised neural models that generate an intuitive visualization of the captured traffic, rather than network statistics. These snapshots of network events are immensely useful for security personnel that monitor network behavior. The system is based on the use of different neural projection and unsupervised methods for the visual inspection of honeypot data, and may be seen as a complementary network security tool that sheds light on internal data structures through visual inspection of the traffic itself. Furthermore, it is intended to facilitate verification and assessment of Snort performance (a well-known and widely-used misuse-based IDS), through the visualization of attack patterns. Empirical verification and comparison of the proposed projection methods are performed in a real domain, where two different case studies are defined and analyzed.

摘要

神经智能系统可以为安全人员提供网络流量的可视化,以降低众所周知的基于误用的入侵检测系统(IDS)的高误报率。与以往的工作不同,本研究提出了一种无监督的神经模型,它可以直观地可视化捕获的流量,而不是网络统计数据。这些网络事件的快照对于监控网络行为的安全人员非常有用。该系统基于使用不同的神经投影和无监督方法来可视化蜜罐数据,并且可以被视为一种补充的网络安全工具,通过对流量本身的可视化来揭示内部数据结构。此外,它旨在通过可视化攻击模式,促进对 Snort 性能(一种众所周知且广泛使用的基于误用的 IDS)的验证和评估。在真实环境中对所提出的投影方法进行了实证验证和比较,其中定义和分析了两个不同的案例研究。

文献检索

告别复杂PubMed语法,用中文像聊天一样搜索,搜遍4000万医学文献。AI智能推荐,让科研检索更轻松。

立即免费搜索

文件翻译

保留排版,准确专业,支持PDF/Word/PPT等文件格式,支持 12+语言互译。

免费翻译文档

深度研究

AI帮你快速写综述,25分钟生成高质量综述,智能提取关键信息,辅助科研写作。

立即免费体验