ARTIFICIAL IMMUNITY-BASED CORRELATION SYSTEM
Guillermo Suarez-Tangil, Esther Palomar, Sergio Pastrana, Arturo Ribagorda
2011
Abstract
Security information event management (SIEM) technologies focus on developing effective methods and tools to assist network administrators during the whole network security management. Though there is a vast number of novel initiatives and contributions in providing adaptiveness and intelligence in this research field, there are still many problems that need be solved. In particular, event correlation are currently emerging as an essential field to be optimized specially due to the widespread adoption of botnets to launch attacks. This position paper explores the biological immune system's characteristics of learning and memory to solve the semi-automatic generation of event correlation rules by applying Artificial Immune Systems (AISs).
References
- Anuar, N., Papadaki, M., Furnell, S., and Clarke, N. (2010). An investigation and survey of response options for Intrusion Response Systems. In Information Security for South Africa (ISSA), 2010, pages 1-8. IEEE.
- Carter, J. H. (2000). The immune system as a model for pattern recognition and classification. Journal of the
Paper Citation
in Harvard Style
Suarez-Tangil G., Palomar E., Pastrana S. and Ribagorda A. (2011). ARTIFICIAL IMMUNITY-BASED CORRELATION SYSTEM . In Proceedings of the International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2011) ISBN 978-989-8425-71-3, pages 422-425. DOI: 10.5220/0003610604220425
in Bibtex Style
@conference{secrypt11,
author={Guillermo Suarez-Tangil and Esther Palomar and Sergio Pastrana and Arturo Ribagorda},
title={ARTIFICIAL IMMUNITY-BASED CORRELATION SYSTEM},
booktitle={Proceedings of the International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2011)},
year={2011},
pages={422-425},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0003610604220425},
isbn={978-989-8425-71-3},
}
in EndNote Style
TY - CONF
JO - Proceedings of the International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2011)
TI - ARTIFICIAL IMMUNITY-BASED CORRELATION SYSTEM
SN - 978-989-8425-71-3
AU - Suarez-Tangil G.
AU - Palomar E.
AU - Pastrana S.
AU - Ribagorda A.
PY - 2011
SP - 422
EP - 425
DO - 10.5220/0003610604220425