Automatic attack scenario discovering based on a new alert correlation method

2011 ◽  
Author(s):  
Ali Ebrahimi ◽  
Ahmad Habibi Zad Navin ◽  
Mir Kamal Mirnia ◽  
Hadi Bahrbegi ◽  
Amir Azimi Alasti Ahrabi
Keyword(s):  
Correlation Method ◽  
Alert Correlation ◽  
Attack Scenario

Intrusion alert correlation method based on uncertain knowledge discovery

2009 ◽  
Vol 29 (3) ◽  
pp. 808-812 ◽  
Author(s):  
Yun XIAO ◽  
Xuan-hong WANG ◽  
Jin-ye PENG ◽  
Jian ZHAO
Keyword(s):  
Knowledge Discovery ◽  
Correlation Method ◽  
Alert Correlation ◽  
Uncertain Knowledge

Alert Correlation for Detecting Cyber-Manufacturing Attacks and Intrusions

2019 ◽  
Vol 20 (1) ◽  
Author(s):  
Mingtao Wu ◽  
Young B. Moon
Keyword(s):  
Intrusion Detection System ◽  
Manufacturing System ◽  
Detection System ◽  
Correlation Method ◽  
Detection Accuracy ◽  
Physical Domain ◽  
Alert Correlation ◽  
Fully Integrated ◽  
Manufacturing Operations ◽  
Smart Factories

Abstract Cyber-manufacturing system (CMS) is a vision of smart factories where manufacturing processes are fully integrated with computational components. In CMS, an effective intrusion detection system (IDS) is essential in protecting manufacturing operations from cyber-physical attacks. Current IDS analyses data from cyber and physical domains but produces reports separately for cyber domain and physical domain. To utilize connections between cyber and physical alerts, this paper presents a cyber-physical alert correlation method. To evaluate the method, four case studies have been developed and carried out on a CMS testbed. The experimental results demonstrate that the method can effectively reduce the number of false alerts, improve the detection accuracy, and identify root causes.

scholarly journals A multi-step attack scenario mining method based on alert correlation

2021 ◽  
Vol 2010 (1) ◽  
pp. 012042
Author(s):  
Jianyi Liu ◽  
Wei Hu ◽  
Chan Wang ◽  
Jingwen Zhang ◽  
Yahao Zhang
Keyword(s):  
Mining Method ◽  
Alert Correlation ◽  
Attack Scenario

Application of cross correlation to HREM images of surfaces

1987 ◽  
Vol 45 ◽  
pp. 754-755
Author(s):  
D. E. Luzzi ◽  
L. D. Marks ◽  
M. I. Buckett
Keyword(s):  
Cross Correlation ◽  
A Priori ◽  
Matrix Material ◽  
Correlation Method ◽  
Accurate Knowledge ◽  
Complex Image ◽  
Fourier Filtering ◽  
The Matrix ◽  
Low Pass ◽  
Data Reduction Technique

As the HREM becomes increasingly used for the study of dynamic localized phenomena, the development of techniques to recover the desired information from a real image is important. Often, the important features are not strongly scattering in comparison to the matrix material in addition to being masked by statistical and amorphous noise. The desired information will usually involve the accurate knowledge of the position and intensity of the contrast. In order to decipher the desired information from a complex image, cross-correlation (xcf) techniques can be utilized. Unlike other image processing methods which rely on data massaging (e.g. high/low pass filtering or Fourier filtering), the cross-correlation method is a rigorous data reduction technique with no a priori assumptions.We have examined basic cross-correlation procedures using images of discrete gaussian peaks and have developed an iterative procedure to greatly enhance the capabilities of these techniques when the contrast from the peaks overlap.

Sign in / Sign up

Export Citation Format

Share Document