文献类型：会议论文

英文题名：Automatic Intrusion Response System Based on Aggregation and Cost

作者：Sun, Yu[1];Zhang, Rubo[2]

机构：[1]Guangdong Ocean Univ, Coll Informat, Zhanjiang 524088, Peoples R China;[2]Harbin Engn Univ, Coll Comp Sci & Technol, Harbin 150001, Peoples R China

会议论文集：IEEE International Conference on Information and Automation

会议日期：JUN 20-23, 2008

会议地点：Changsha, PEOPLES R CHINA

语种：英文

外文摘要：One of the most significant issues in intrusion detection is automating responses to intrusions, but has so far been largely overlooked and therefore requires further research in its own right And another main weakness of current intrusion detection systems is that they often generate too many same or similar alerts for one intrusion and system immune alerts. This will use a lot of time to respond repeatedly. As a result, a better method to solve above problem is making use of the aggregation to classify the alerts and the Response Cost to decrease the system immune alerts. At last, this paper presents a modal of automatic intrusion response system and introduces the implement in detail.