Decision support system for zero-day attack response

Applied Mathematics and Information Sciences

Volumn 6, Issue 1 SUPPL., 2012, Pages

  Kim, Huy Kang ^a   Kim, Soo Kyun ^b   Kim, Seok Hun ^c  

^a Korea University   (South Korea)

^b PaiChai University   (South Korea)

^c Mokwon University   (South Korea)

Author keywords

Attack similarity; Case based reasoning; Decision support system; Zero day attack

Indexed keywords

EID: 84896839926     PISSN: 19350090     EISSN: 23250399     Source Type: Journal    
DOI: None     Document Type: Article

References (29)

1. Noel, S., Wijesekera, D. and Youman, C., Applications of data mining in computer security, Kluwer Academic Publishers. (2002), 3-25.
2. Liu, X., Fang, C. and Xiao, D., Intrusion diagnosis and prediction with expert system. Security and Communication Networks (2011).
3. Soewito, B., Vespa, L., Weng, N. and Wang, H., Hybrid pattern matching for trusted intrusion detection, Security and Communication Network. 4(2011), 33-43.
4. Barbara, D., and Jajodia, S., Applications of Data Mining in Computer Security, Kluwer Academic Publishers. 2002 6-7.
5. Eskin, E., Anomaly detection over noisy data using learned probability distributions, Proceedings of 17th International Conference on Machine Learning (ICML). (2000).
6. Warrender, C., Forrest, S. and Pearlmutter, B., Detecting Intrusions using System calls: Alternative Data Models. IEEE Symposium on Security and Privacy. (1999) 133-145.
7. Kruegel, C., Mutz, D., Robertson, W. and Valeur, F., Bayesian event classification for intrusion detection, Proceedings of 19th Annual Computer Security Applications Conference (ACSAC). (2003) 14-23.
8. HyungJong K., Huy K. K. and Hae Y. L., Security Requirement representation method for confidence of systems and networks, International Journal of Software Engineering and Knowledge Engineering. 20 (2010) 49-71.
9. Bishop, M., Vulnerabilities Analysis, Proceedings of the Recent Advances in Intrusion Detection. (1999) 125-136.
10. r0ut3r, GoodTech SSH Server SFTP Multiple Command, Handling Overflow, http://www.milw0rm.com/exploits/6804, 2008.
11. Cohen, F., 50 ways to defeat your intrusion detection system. 1997. http://all.net/journal/netsec/1997-12.html.
12. CAPEC(Common Attack Pattern Enumeration and Classification). MITRE cooperation. http://capec.mitre.org.
13. CWE (Common Weakness Enumeration). http://cwe.mitre.org. MITRE cooperation.
14. CVE (Common Vulnerability Exposure). http://cve.mitre.org. MITRE cooperation.
15. Wang, L., Noel, S. and Jajodia, S., Minimum-cost network hardening using attack graphs, Computer Communications. 29 (2006) 3812-3824.
16. Jajodia, S., Noel, S. and O'Berry, B., Topological analysis of network attack vulnerability, Massive Computing. 5 (2005) 247-266.
17. Noel, S. and Jajodia, S., Managing attack graph complexity through visual hierarchical aggregation, Conference on Computer and Communications Security, Proceedings of the 2004 ACM workshop on Visualization and data mining for computer security (VizSEC/DMSEC).(2004) 109-118.
18. Rieke, R., Tool based formal Modeling, Analysis and Visualization of Enterprise Network Vulnerabilities utilising Attack Graph Exploration, European Institute for Computer Antivirus Research (EICAR). 2004.
19. Musman, S. and Flesher, P., System or Security Managers Adaptive Response Tool, DARPA Information Survivability Conference & Exposition (DISCEX). 02 (2000) 56-68.
20. Joo, D., Hong, T., Lee, S. and Han, I., A comparison of Case-based Reasoning and Neural Network Model for Intrusion Detection, Computer and Security. (2003).
21. Huy K. K., Kwang H. I. and Sang C. P., DSS for computer security incident response applying CBR and collaborative response, Expert Systems with Applications. 37 (2010) 852-870.
22. Jaro, M. E., Advances in record linking methodology as applied to the 1985 census of Tampa Florida, Journal of the American Statistical Society. 84 (1989) 414-420.
23. Winkler, W. E., The state of record linkage and current research problems, Statistics of Income Division, Internal Revenue Service Publication. R99/04 (1999).
24. Smith, T. F. and Waterman, M. S., Identification of Common Molecular Subsequences, Journal of Molecular Biology. 147 (1981) 195-197.
25. Cohen, W., Ravikumar, P. and Fienberg, S. E., A Comparison of String Distance Metrics for Name-Matching Tasks, KDD Workshop on Data Cleaning and Object Consolidation. (2003) 73-78.
26. Changsok Y., Huy K. K., Eunnyeong H., The Economic Value of Online Game Developers in Early Stages, Journal of Future Game Technology. 1, 1(2011) 21-34.
27. Dong-bum Lee, Smartwork Security Framework with Secure Access Control, Journal of The Korea Knowledge Information Technology Society, 6, 4(2011)17-26
28. Dae-Sik Park, Smartcard-based Remote User Authentication Protocol with Improved Security, Journal of The Korea Knowledge Information Technology Society, 6, 4(2011)27-34
29. Ki-Seok Bang, Classification Criteria and Application Methodology for Evaluating IT Security Products, Journal of The Korea Knowledge Information Technology Society, 6, 5(2011)105-112