【摘 要】
:
Attack Analysis is a necessity after breaches of the system; without an accurate attack analysis, network forensics works poorly.It is a fact that defining
【机 构】
:
School of Computer Sciences Universiti Sains Malaysia Penang,11800 USM,Malaysia
【出 处】
:
2011 International Conferenc on Computer Application and Edu
论文部分内容阅读
Attack Analysis is a necessity after breaches of the system; without an accurate attack analysis, network forensics works poorly.It is a fact that defining the attacker and apprehending the perpetrator are more costly and complicated during the investigation phase.Analyzing attack evidence and linking this with previous attack incident responses.makes the investigation outcome more accurate and improves the quality of decision-making.This paper proposes a network forensics attack-analysis model that identifies the attack intentions of a new attack and estimates the similarity of this new attack intention to previous ones.A similarity metric for attack intention will be generated to determine similar attack intentions.Lastly, the similarity of the attack intention will be used to determine the similarity between the incident respouse required for the new attack and that required for previous attacks, using a pre-defined incidence response database.Experiments were performed on packet capture, where network data traffic generates a backdoor attack, to evaluate the proposed model.Results show that the proposed model can reduce effort and processing costs during the investigation process.
其他文献
Engineering is an important content in university education.Nowadays, new engineering technologies come forth continuously, so fostering students self-learn
有人对18世纪至19世纪对世界作出重大贡献的科学家的年龄进行了统计,发现他们的平均年龄为58.8岁,远比当时的人类平均寿命要高得多。至于知识分子享得高寿者,我们可以举出许
香港过去发行邮票,集邮者只能于发行当天在邮政局排队购买,直到1997年才增设“常设订购邮品户口”(现改称“邮品订购服务户口”),容许个人预订邮票(1996年年底开始接受预订)
细嚼慢咽:老年人的牙齿往往残缺不全,加之胃肠功能减弱,只有细嚼慢咽才容易将食物嚼得精细,有利于营养的消化吸收。同时唾液有押菌杀菌作用,还具有一定杀死致癌物质的作用,
随着社会主义市场经济体制的初步建立和逐步完善,我省投融资体制正在发生深刻变化,民间投资的总量不断增长,领域不断拓宽。发展民间投资,有利于进一步扩大内需,保持我省经济
Nasopharyngeal carcinoma (NPC) has remarkable epidemiological features, including regional, racial, and familial aggregations. The aim of this review is to desc
It has an importance actual meaning to develop the research on analogue simulation of action mechanism of the energetic material in optimum design of energe
This paper focuses on an introduction of the new curriculum to train students comprehensive ability by software engineering theory.The curriculum uses the w
一位专家说得好:“保护血液就是保护生命”。道理很简单,血液承担着灌溉与滋养全身组织与器官的重任,如果出现异常,对健康的影响之大可想而知。 那么,如何保护呢?本文告诉你
In order to solve the problem which education game encountered during its development process, the inspiration of implicit knowledge theory on education gam