G-CAS: Greedy Algorithm-Based Security Event Correlation System for Critical Infrastructure Network

The attacks on the critical infrastructure network have increased sharply, and the strict management measures of the critical infrastructure network have caused its correlation analysis technology for security events to be relatively backward; this makes the critical infrastructure network’s security situation more severe. Currently, there is no common correlation analysis technology for the critical infrastructure network, and most technologies focus on expanding the dimension of data analysis, but with less attention to the optimization of analysis performance. The analysis performance does not meet the practical environment, and real-time analysis is even more impossible; as a result, the efficiency of security threat detection is greatly declined. To solve this issue, we propose the greedy tree algorithm, a correlation analysis approach based on the greedy algorithm, which optimizes event analysis steps and significantly improves the performance, so the real-time correlation analysis can be realized. We first verify the performance of the algorithm through formalization, and then the G-CAS (Greedy Correlation Analysis System) is implemented based on this algorithm and is applied in a real critical infrastructure network, which outperformed the current mainstream products.

Download Full-text

Real-Time Event Correlation, Analysis, and Response

Physical and Logical Security Convergence ◽

10.1016/b978-159749122-8.50015-6 ◽

2007 ◽

pp. 319-350

Author(s):

Brian T. Contos ◽

William P. Crowell ◽

Colby DeRodeff ◽

Dan Dunkel ◽

Eric Cole ◽

...

Keyword(s):

Correlation Analysis ◽

Real Time ◽

Event Correlation

Download Full-text

CO2 Leakage Identification in Geosequestration Based on Real Time Correlation Analysis Between Atmospheric O2 and CO2

Chinese Journal of Chemical Engineering ◽

10.1016/s1004-9541(14)60094-x ◽

2014 ◽

Vol 22 (6) ◽

pp. 634-642 ◽

Cited By ~ 6

Author(s):

Denglong MA ◽

Jianqiang DENG ◽

Zaoxiao ZHANG

Keyword(s):

Correlation Analysis ◽

Real Time ◽

Time Correlation ◽

Co2 Leakage

Download Full-text

Modelling and real-time analysis of critical infrastructure using discrete event systems on graphs

2015 IEEE International Symposium on Technologies for Homeland Security (HST) ◽

10.1109/ths.2015.7225330 ◽

2015 ◽

Cited By ~ 2

Author(s):

Samir Puuska ◽

Kasper Kansanen ◽

Lauri Rummukainen ◽

Jouko Vankka

Keyword(s):

Real Time ◽

Discrete Event Systems ◽

Critical Infrastructure ◽

Discrete Event ◽

Time Analysis ◽

Real Time Analysis ◽

Event Systems

Download Full-text

An Interactive Minicomputer Program for the Indexing and Simulation of Electron Diffraction Patterns

Proceedings, annual meeting, Electron Microscopy Society of America ◽

10.1017/s0424820100092670 ◽

1976 ◽

Vol 34 ◽

pp. 542-543

Author(s):

R.P. Goehner ◽

W.T. Hatfield ◽

Prakash Rao

Keyword(s):

Electron Diffraction ◽

Real Time ◽

Pattern Analysis ◽

Flow Diagram ◽

Hard Copy ◽

Time Analysis ◽

Real Time Analysis ◽

Transmission Electron ◽

One Step ◽

Diffraction Patterns

Computer programs are now available in various laboratories for the indexing and simulation of transmission electron diffraction patterns. Although these programs address themselves to the solution of various aspects of the indexing and simulation process, the ultimate goal is to perform real time diffraction pattern analysis directly off of the imaging screen of the transmission electron microscope. The program to be described in this paper represents one step prior to real time analysis. It involves the combination of two programs, described in an earlier paper(l), into a single program for use on an interactive basis with a minicomputer. In our case, the minicomputer is an INTERDATA 70 equipped with a Tektronix 4010-1 graphical display terminal and hard copy unit.A simplified flow diagram of the combined program, written in Fortran IV, is shown in Figure 1. It consists of two programs INDEX and TEDP which index and simulate electron diffraction patterns respectively. The user has the option of choosing either the indexing or simulating aspects of the combined program.

Download Full-text