| Title: | Incident Reaction Based on Intrusion Detections’ Alert Analysis |
| Authors: | Heigl, Michael Doerr, Laurin Almaini, Amar Fiala, Dalibor Schram, Martin |
| Citation: | 2018 International Conference on Applied Electronics: Pilsen, 11th – 12th September 2018, Czech Republic, 45-50. |
| Issue Date: | 2018 |
| Publisher: | Západočeská univerzita v Plzni |
| Document type: | konferenční příspěvek conferenceObject |
| URI: | http://hdl.handle.net/11025/35468 |
| ISBN: | 978–80–261–0721–7 |
| ISSN: | 1803–7232 |
| Keywords: | korelace;kryptografie;detekce narušení;plánování;extrakce funkcí;analýza úkolů |
| Keywords in different language: | correlation;cryptography;intrusion detection;planning;feature extraction;task analysis |
| Abstract in different language: | The protection of internetworked systems by cryptographic techniques have crystallized as a fundamental aspect in establishing secure systems. Complementary, detection mechanisms for instance based on Intrusion Detection Systems has established itself as a fundamental part in holistic security eco-systems in the previous years. However, the interpretation of and reaction on detected incidents is still a challenging task. In this paper an incident handling environment with relevant components and exemplary functionality is proposed that involves the processes from the detection of incidents over their analysis to the execution of appropriate reactions. An evaluation of a selection of implemented interacting components using technology such as OpenFlow or Snort generally proofs the concept. |
| Rights: | © Západočeská univerzita v Plzni |
| Appears in Collections: | Applied Electronics 2018 Applied Electronics 2018 |
Please use this identifier to cite or link to this item:
http://hdl.handle.net/11025/35468Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.