MaNaDAC: An Effective Alert Correlation Method

Manaswita Saikia; Nazrul Hoque; Dhruba Kumar Bhattacharyya

doi:10.1007/978-981-13-1280-9_24

MaNaDAC: An Effective Alert Correlation Method

Manaswita Saikia^*
, Nazrul Hoque
, Dhruba Kumar Bhattacharyya

^*Corresponding author for this work

School of Computer Engineering

Research output: Chapter in Book/Report/Conference proceeding › Chapter

3 Citations (Scopus)

Abstract

This paper presents an effective alert correlation method referred to as MaNaDAC to support network intrusion detection. The method includes several modules such as feature ranking and selection, clustering and fusion to process low-level alerts and uses the concept of causality to discover relations among attacks. The method has been validated using DARPA 2000 intrusion dataset.

Original language	English
Title of host publication	Advances in Intelligent Systems and Computing
Publisher	Springer Verlag
Pages	249-260
Number of pages	12
DOIs	https://doi.org/10.1007/978-981-13-1280-9_24
Publication status	Published - 2019

Publication series

Name	Advances in Intelligent Systems and Computing
Volume	740
ISSN (Print)	2194-5357

All Science Journal Classification (ASJC) codes

Control and Systems Engineering
General Computer Science

Access to Document

10.1007/978-981-13-1280-9_24

Cite this

@inbook{18b9d7eb203f4516979282f8d44f368f,

title = "MaNaDAC: An Effective Alert Correlation Method",

abstract = "This paper presents an effective alert correlation method referred to as MaNaDAC to support network intrusion detection. The method includes several modules such as feature ranking and selection, clustering and fusion to process low-level alerts and uses the concept of causality to discover relations among attacks. The method has been validated using DARPA 2000 intrusion dataset.",

author = "Manaswita Saikia and Nazrul Hoque and Bhattacharyya, \{Dhruba Kumar\}",

note = "Publisher Copyright: {\textcopyright} 2019, Springer Nature Singapore Pte Ltd.",

year = "2019",

doi = "10.1007/978-981-13-1280-9\_24",

language = "English",

series = "Advances in Intelligent Systems and Computing",

publisher = "Springer Verlag",

pages = "249--260",

booktitle = "Advances in Intelligent Systems and Computing",

address = "Germany",

}

TY - CHAP

T1 - MaNaDAC

T2 - An Effective Alert Correlation Method

AU - Saikia, Manaswita

AU - Hoque, Nazrul

AU - Bhattacharyya, Dhruba Kumar

PY - 2019

Y1 - 2019

N2 - This paper presents an effective alert correlation method referred to as MaNaDAC to support network intrusion detection. The method includes several modules such as feature ranking and selection, clustering and fusion to process low-level alerts and uses the concept of causality to discover relations among attacks. The method has been validated using DARPA 2000 intrusion dataset.

AB - This paper presents an effective alert correlation method referred to as MaNaDAC to support network intrusion detection. The method includes several modules such as feature ranking and selection, clustering and fusion to process low-level alerts and uses the concept of causality to discover relations among attacks. The method has been validated using DARPA 2000 intrusion dataset.

UR - https://www.scopus.com/pages/publications/85053379135

UR - https://www.scopus.com/pages/publications/85053379135#tab=citedBy

U2 - 10.1007/978-981-13-1280-9_24

DO - 10.1007/978-981-13-1280-9_24

M3 - Chapter

AN - SCOPUS:85053379135

T3 - Advances in Intelligent Systems and Computing

SP - 249

EP - 260

BT - Advances in Intelligent Systems and Computing

PB - Springer Verlag

ER -

MaNaDAC: An Effective Alert Correlation Method

Abstract

Publication series

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this