Evaluating Reputation of Internet Entities - Management and Security in the Age of Hyperconnectivity
Conference Papers Year : 2016

Evaluating Reputation of Internet Entities

Jan Kořenek
  • Function : Author
  • PersonId : 1022574

Abstract

Security monitoring tools, such as honeypots, IDS, behavioral analysis or anomaly detection systems, generate large amounts of security events or alerts. These alerts are often shared within some communities using various alert sharing systems. Our research is focused on analysis of the huge amount of data present in these systems. In this work we focus on summarizing all alerts and other information known about a network entity into a measure called reputation score expressing the level of threat the entity poses. Computation of the reputation score is based on estimating probability of future attacks caused by the entity.
Fichier principal
Vignette du fichier
385745_1_En_13_Chapter.pdf (154.36 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01632738 , version 1 (10-11-2017)

Licence

Identifiers

Cite

Václav Bartoš, Jan Kořenek. Evaluating Reputation of Internet Entities. 10th IFIP International Conference on Autonomous Infrastructure, Management and Security (AIMS), Jun 2016, Munich, Germany. pp.132-136, ⟨10.1007/978-3-319-39814-3_13⟩. ⟨hal-01632738⟩
85 View
345 Download

Altmetric

Share

More