Please use this identifier to cite or link to this item: https://repository.cihe.edu.hk/jspui/handle/cihe/1425
DC FieldValueLanguage
dc.contributor.authorChan, Anthony Hing-Hungen_US
dc.contributor.otherBarry, B. I. A.-
dc.date.accessioned2021-08-27T06:23:31Z-
dc.date.available2021-08-27T06:23:31Z-
dc.date.issued2007-
dc.identifier.urihttps://repository.cihe.edu.hk/jspui/handle/cihe/1425-
dc.description.abstractThe open nature of the next generation networks (NGNs) and the involvement of multiple protocols in a single session, along with the attacks that spread multiple protocols, pose new challenges to intrusion detection systems (IDSs). Detecting attacks based on information taken from a single protocol or a group of protocols at a certain layer results in a high rate of false positives or false negatives. In this paper, we introduce a new cross protocol design for IDSs in the NGNs based on protocol anomaly detection. Our design aims at correlating various detection results from the protocols involved in a session, both, horizontally and vertically. By horizontal correlation we aim at monitoring sessions taking place within a single layer of the protocol stack, whereas, vertical correlation addresses sessions taking place across multiple protocol layers. In addition, our design is supported by intelligent mechanism based on fuzzy logic to help the system reduce the rate of false alarms which is relatively high in many anomaly based intrusion detection systems. This paper presents the basic features of our design, emphasizing the components and the interactions between them.en_US
dc.language.isoenen_US
dc.publisherIEEEen_US
dc.titleTowards intelligent cross protocol intrusion detection in the next generation networks based on protocol anomaly detectionen_US
dc.typeconference proceedingsen_US
dc.relation.publicationProceedings of the 9th International Conference on Advanced Communication Technology (ICACT 2007)en_US
dc.identifier.doi10.1109/ICACT.2007.358653-
dc.contributor.affiliationSchool of Computing and Information Sciencesen_US
dc.relation.isbn9788955191318en_US
dc.description.startpage1505en_US
dc.description.endpage1510en_US
dc.cihe.affiliatedNo-
item.languageiso639-1en-
item.fulltextNo Fulltext-
item.openairetypeconference proceedings-
item.grantfulltextnone-
item.openairecristypehttp://purl.org/coar/resource_type/c_5794-
item.cerifentitytypePublications-
crisitem.author.deptYam Pak Charitable Foundation School of Computing and Information Sciences-
crisitem.author.orcid0000-0001-7479-0787-
Appears in Collections:CIS Publication
SFX Query Show simple item record

Google ScholarTM

Check

Altmetric

Altmetric


Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.