Aggregation and Correlation of Intrusion-Detection Alerts View Full Text


Ontology type: schema:Chapter      Open Access: True


Chapter Info

DATE

2001-09-27

AUTHORS

Hervé Debar , Andreas Wespi

ABSTRACT

This paper describes an aggregation and correlation algorithm used in the design and implementation of an intrusion-detection console built on top of the Tivoli Enterprise Console (TEC). The aggregation and correlation algorithm aims at acquiring intrusion-detection alerts and relating them together to expose a more condensed view of the security issues raised by intrusion-detection systems. More... »

PAGES

85-103

Book

TITLE

Recent Advances in Intrusion Detection

ISBN

978-3-540-42702-5
978-3-540-45474-8

Identifiers

URI

http://scigraph.springernature.com/pub.10.1007/3-540-45474-8_6

DOI

http://dx.doi.org/10.1007/3-540-45474-8_6

DIMENSIONS

https://app.dimensions.ai/details/publication/pub.1028240787


Indexing Status Check whether this publication has been indexed by Scopus and Web Of Science using the SN Indexing Status Tool
Incoming Citations Browse incoming citations for this publication using opencitations.net

JSON-LD is the canonical representation for SciGraph data.

TIP: You can open this SciGraph record using an external JSON-LD service: JSON-LD Playground Google SDTT

[
  {
    "@context": "https://springernature.github.io/scigraph/jsonld/sgcontext.json", 
    "about": [
      {
        "id": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/0801", 
        "inDefinedTermSet": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/", 
        "name": "Artificial Intelligence and Image Processing", 
        "type": "DefinedTerm"
      }, 
      {
        "id": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/08", 
        "inDefinedTermSet": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/", 
        "name": "Information and Computing Sciences", 
        "type": "DefinedTerm"
      }
    ], 
    "author": [
      {
        "affiliation": {
          "alternateName": "Orange (France)", 
          "id": "https://www.grid.ac/institutes/grid.89485.38", 
          "name": [
            "France T\u00e9l\u00e9com R&D, 42 Rue des Coutures, F-14000, Caen, France"
          ], 
          "type": "Organization"
        }, 
        "familyName": "Debar", 
        "givenName": "Herv\u00e9", 
        "id": "sg:person.016303555143.12", 
        "sameAs": [
          "https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.016303555143.12"
        ], 
        "type": "Person"
      }, 
      {
        "affiliation": {
          "alternateName": "IBM Research - Zurich", 
          "id": "https://www.grid.ac/institutes/grid.410387.9", 
          "name": [
            "Zurich Research Laboratory, IBM Research, S\u00e4umerstrasse 4, CH-8803, R\u00fcschlikon, Switzerland"
          ], 
          "type": "Organization"
        }, 
        "familyName": "Wespi", 
        "givenName": "Andreas", 
        "id": "sg:person.015336520224.18", 
        "sameAs": [
          "https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.015336520224.18"
        ], 
        "type": "Person"
      }
    ], 
    "datePublished": "2001-09-27", 
    "datePublishedReg": "2001-09-27", 
    "description": "This paper describes an aggregation and correlation algorithm used in the design and implementation of an intrusion-detection console built on top of the Tivoli Enterprise Console (TEC). The aggregation and correlation algorithm aims at acquiring intrusion-detection alerts and relating them together to expose a more condensed view of the security issues raised by intrusion-detection systems.", 
    "editor": [
      {
        "familyName": "Lee", 
        "givenName": "Wenke", 
        "type": "Person"
      }, 
      {
        "familyName": "M\u00e9", 
        "givenName": "Ludovic", 
        "type": "Person"
      }, 
      {
        "familyName": "Wespi", 
        "givenName": "Andreas", 
        "type": "Person"
      }
    ], 
    "genre": "chapter", 
    "id": "sg:pub.10.1007/3-540-45474-8_6", 
    "inLanguage": [
      "en"
    ], 
    "isAccessibleForFree": true, 
    "isPartOf": {
      "isbn": [
        "978-3-540-42702-5", 
        "978-3-540-45474-8"
      ], 
      "name": "Recent Advances in Intrusion Detection", 
      "type": "Book"
    }, 
    "name": "Aggregation and Correlation of Intrusion-Detection Alerts", 
    "pagination": "85-103", 
    "productId": [
      {
        "name": "doi", 
        "type": "PropertyValue", 
        "value": [
          "10.1007/3-540-45474-8_6"
        ]
      }, 
      {
        "name": "readcube_id", 
        "type": "PropertyValue", 
        "value": [
          "86888ba8e82448beeddd4f9df3f069254b34eb5042a8eb4ce9668abb24b8bf92"
        ]
      }, 
      {
        "name": "dimensions_id", 
        "type": "PropertyValue", 
        "value": [
          "pub.1028240787"
        ]
      }
    ], 
    "publisher": {
      "location": "Berlin, Heidelberg", 
      "name": "Springer Berlin Heidelberg", 
      "type": "Organisation"
    }, 
    "sameAs": [
      "https://doi.org/10.1007/3-540-45474-8_6", 
      "https://app.dimensions.ai/details/publication/pub.1028240787"
    ], 
    "sdDataset": "chapters", 
    "sdDatePublished": "2019-04-16T05:26", 
    "sdLicense": "https://scigraph.springernature.com/explorer/license/", 
    "sdPublisher": {
      "name": "Springer Nature - SN SciGraph project", 
      "type": "Organization"
    }, 
    "sdSource": "s3://com-uberresearch-data-dimensions-target-20181106-alternative/cleanup/v134/2549eaecd7973599484d7c17b260dba0a4ecb94b/merge/v9/a6c9fde33151104705d4d7ff012ea9563521a3ce/jats-lookup/v90/0000000345_0000000345/records_64103_00000001.jsonl", 
    "type": "Chapter", 
    "url": "https://link.springer.com/10.1007%2F3-540-45474-8_6"
  }
]
 

Download the RDF metadata as:  json-ld nt turtle xml License info

HOW TO GET THIS DATA PROGRAMMATICALLY:

JSON-LD is a popular format for linked data which is fully compatible with JSON.

curl -H 'Accept: application/ld+json' 'https://scigraph.springernature.com/pub.10.1007/3-540-45474-8_6'

N-Triples is a line-based linked data format ideal for batch operations.

curl -H 'Accept: application/n-triples' 'https://scigraph.springernature.com/pub.10.1007/3-540-45474-8_6'

Turtle is a human-readable linked data format.

curl -H 'Accept: text/turtle' 'https://scigraph.springernature.com/pub.10.1007/3-540-45474-8_6'

RDF/XML is a standard XML format for linked data.

curl -H 'Accept: application/rdf+xml' 'https://scigraph.springernature.com/pub.10.1007/3-540-45474-8_6'


 

This table displays all metadata directly associated to this object as RDF triples.

85 TRIPLES      22 PREDICATES      26 URIs      19 LITERALS      8 BLANK NODES

Subject Predicate Object
1 sg:pub.10.1007/3-540-45474-8_6 schema:about anzsrc-for:08
2 anzsrc-for:0801
3 schema:author N8a0fe6bc62b1469baef595a3866cf6b0
4 schema:datePublished 2001-09-27
5 schema:datePublishedReg 2001-09-27
6 schema:description This paper describes an aggregation and correlation algorithm used in the design and implementation of an intrusion-detection console built on top of the Tivoli Enterprise Console (TEC). The aggregation and correlation algorithm aims at acquiring intrusion-detection alerts and relating them together to expose a more condensed view of the security issues raised by intrusion-detection systems.
7 schema:editor N080de8a5fb6b4f828849fe03d98010c4
8 schema:genre chapter
9 schema:inLanguage en
10 schema:isAccessibleForFree true
11 schema:isPartOf N9257ba2ae6344ca1a5ee5266f16a704b
12 schema:name Aggregation and Correlation of Intrusion-Detection Alerts
13 schema:pagination 85-103
14 schema:productId N4c17e3d13f2742388f02fae58935685d
15 N8f059bd4c9f74f028eab11ad3d1278f6
16 Na7cad2d13ab1409f95353751b6953c51
17 schema:publisher N5f0ae446cc5f4179805d677ce6051b86
18 schema:sameAs https://app.dimensions.ai/details/publication/pub.1028240787
19 https://doi.org/10.1007/3-540-45474-8_6
20 schema:sdDatePublished 2019-04-16T05:26
21 schema:sdLicense https://scigraph.springernature.com/explorer/license/
22 schema:sdPublisher Naca94d2538304f41b17142a2cdbdfdf6
23 schema:url https://link.springer.com/10.1007%2F3-540-45474-8_6
24 sgo:license sg:explorer/license/
25 sgo:sdDataset chapters
26 rdf:type schema:Chapter
27 N080de8a5fb6b4f828849fe03d98010c4 rdf:first N35166409b85142ae8d3f5d139e8a9bfe
28 rdf:rest N2266ac005a9c449db4ed661a9d7f1928
29 N0ec98f7cad304bdebe05c9b412c843c0 schema:familyName Wespi
30 schema:givenName Andreas
31 rdf:type schema:Person
32 N2266ac005a9c449db4ed661a9d7f1928 rdf:first Na7c8a0680024493eb1770469d366c814
33 rdf:rest N6c28cf780a4e4bacb557b622887a2332
34 N35166409b85142ae8d3f5d139e8a9bfe schema:familyName Lee
35 schema:givenName Wenke
36 rdf:type schema:Person
37 N4c17e3d13f2742388f02fae58935685d schema:name doi
38 schema:value 10.1007/3-540-45474-8_6
39 rdf:type schema:PropertyValue
40 N5f0ae446cc5f4179805d677ce6051b86 schema:location Berlin, Heidelberg
41 schema:name Springer Berlin Heidelberg
42 rdf:type schema:Organisation
43 N6c28cf780a4e4bacb557b622887a2332 rdf:first N0ec98f7cad304bdebe05c9b412c843c0
44 rdf:rest rdf:nil
45 N8a0fe6bc62b1469baef595a3866cf6b0 rdf:first sg:person.016303555143.12
46 rdf:rest Nfac1d93d8a5f4b02b395184cf5ac0a11
47 N8f059bd4c9f74f028eab11ad3d1278f6 schema:name readcube_id
48 schema:value 86888ba8e82448beeddd4f9df3f069254b34eb5042a8eb4ce9668abb24b8bf92
49 rdf:type schema:PropertyValue
50 N9257ba2ae6344ca1a5ee5266f16a704b schema:isbn 978-3-540-42702-5
51 978-3-540-45474-8
52 schema:name Recent Advances in Intrusion Detection
53 rdf:type schema:Book
54 Na7c8a0680024493eb1770469d366c814 schema:familyName
55 schema:givenName Ludovic
56 rdf:type schema:Person
57 Na7cad2d13ab1409f95353751b6953c51 schema:name dimensions_id
58 schema:value pub.1028240787
59 rdf:type schema:PropertyValue
60 Naca94d2538304f41b17142a2cdbdfdf6 schema:name Springer Nature - SN SciGraph project
61 rdf:type schema:Organization
62 Nfac1d93d8a5f4b02b395184cf5ac0a11 rdf:first sg:person.015336520224.18
63 rdf:rest rdf:nil
64 anzsrc-for:08 schema:inDefinedTermSet anzsrc-for:
65 schema:name Information and Computing Sciences
66 rdf:type schema:DefinedTerm
67 anzsrc-for:0801 schema:inDefinedTermSet anzsrc-for:
68 schema:name Artificial Intelligence and Image Processing
69 rdf:type schema:DefinedTerm
70 sg:person.015336520224.18 schema:affiliation https://www.grid.ac/institutes/grid.410387.9
71 schema:familyName Wespi
72 schema:givenName Andreas
73 schema:sameAs https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.015336520224.18
74 rdf:type schema:Person
75 sg:person.016303555143.12 schema:affiliation https://www.grid.ac/institutes/grid.89485.38
76 schema:familyName Debar
77 schema:givenName Hervé
78 schema:sameAs https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.016303555143.12
79 rdf:type schema:Person
80 https://www.grid.ac/institutes/grid.410387.9 schema:alternateName IBM Research - Zurich
81 schema:name Zurich Research Laboratory, IBM Research, Säumerstrasse 4, CH-8803, Rüschlikon, Switzerland
82 rdf:type schema:Organization
83 https://www.grid.ac/institutes/grid.89485.38 schema:alternateName Orange (France)
84 schema:name France Télécom R&D, 42 Rue des Coutures, F-14000, Caen, France
85 rdf:type schema:Organization
 




Preview window. Press ESC to close (or click here)


...