Panacea: Automating Attack Classification for Anomaly-based Network Intrusion Detection Systems

D. Bolzoni; Sandro Etalle; Pieter H. Hartel

Panacea: Automating Attack Classification for Anomaly-based Network Intrusion Detection Systems

D. Bolzoni, Sandro Etalle, Pieter H. Hartel

Research output: Book/Report › Report › Professional

24 Citations (Scopus)

83 Downloads (Pure)

Abstract

Anomaly-based intrusion detection systems are usually criticized because they lack a classication of attack, thus security teams have to manually inspect any raised alert to classify it. We present a new approach, Panacea, to automatically and systematically classify attacks detected by an anomaly-based network intrusion detection system.

Original language	Undefined
Place of Publication	Enschede
Publisher	Centre for Telematics and Information Technology (CTIT)
Number of pages	21
Publication status	Published - 2009

Publication series

Name	CTIT Technical Report Series
No.	TR-CTIT-09-10
ISSN (Print)	1381-3625

Keywords

EWI-15424
anomaly-based intrusion detection systems
Attack classication
METIS-263879
SCS-Cybersecurity

Access to Document

bh09

Cite this

@book{c40185096a7b416399d963da4adb5613,

title = "Panacea: Automating Attack Classification for Anomaly-based Network Intrusion Detection Systems",

abstract = "Anomaly-based intrusion detection systems are usually criticized because they lack a classication of attack, thus security teams have to manually inspect any raised alert to classify it. We present a new approach, Panacea, to automatically and systematically classify attacks detected by an anomaly-based network intrusion detection system.",

keywords = "EWI-15424, anomaly-based intrusion detection systems, Attack classication, METIS-263879, SCS-Cybersecurity",

author = "D. Bolzoni and Sandro Etalle and Hartel, {Pieter H.}",

note = "The work is patent pending.",

year = "2009",

language = "Undefined",

series = "CTIT Technical Report Series",

publisher = "Centre for Telematics and Information Technology (CTIT)",

number = "TR-CTIT-09-10",

address = "Netherlands",

}

TY - BOOK

T1 - Panacea: Automating Attack Classification for Anomaly-based Network Intrusion Detection Systems

AU - Bolzoni, D.

AU - Etalle, Sandro

AU - Hartel, Pieter H.

N1 - The work is patent pending.

PY - 2009

Y1 - 2009

N2 - Anomaly-based intrusion detection systems are usually criticized because they lack a classication of attack, thus security teams have to manually inspect any raised alert to classify it. We present a new approach, Panacea, to automatically and systematically classify attacks detected by an anomaly-based network intrusion detection system.

AB - Anomaly-based intrusion detection systems are usually criticized because they lack a classication of attack, thus security teams have to manually inspect any raised alert to classify it. We present a new approach, Panacea, to automatically and systematically classify attacks detected by an anomaly-based network intrusion detection system.

KW - EWI-15424

KW - anomaly-based intrusion detection systems

KW - Attack classication

KW - METIS-263879

KW - SCS-Cybersecurity

M3 - Report

T3 - CTIT Technical Report Series

BT - Panacea: Automating Attack Classification for Anomaly-based Network Intrusion Detection Systems

PB - Centre for Telematics and Information Technology (CTIT)

CY - Enschede

ER -