AIRSE : an approach for attack intention recognition based on similarity of evidences

AIRSE : an approach for attack intention recognition based on similarity of evidences

Sensitive information can be exposed to critical risks when communicated through computer networks. The ability of attackers in hiding their attacks' intention obstructs existing protection systems to early prevent their attacks and avoid any possible sabotage in network systems. In this paper,...

Full description

Bibliographic Details
Main Authors: Ahmed, Abdulghani Ali, Noorul Ahlami, Kamarul Zaman
Format: Conference or Workshop Item
Language:English
English
Published: EAI 2017
Subjects:
QA76 Computer software
Online Access:http://umpir.ump.edu.my/id/eprint/27010/
http://umpir.ump.edu.my/id/eprint/27010/
http://umpir.ump.edu.my/id/eprint/27010/1/AIRSE%20-%20an%20approach%20for%20attack%20intention%20recognition%20based.pdf
http://umpir.ump.edu.my/id/eprint/27010/7/AIRSE%20an%20approach%20for%20attack%20intention%20recognition%20based%20on%20similarity%20of%20evidences.pdf
id ump-27010
recordtype eprints
spelling ump-270102019-12-18T02:14:56Z http://umpir.ump.edu.my/id/eprint/27010/ AIRSE : an approach for attack intention recognition based on similarity of evidences Ahmed, Abdulghani Ali Noorul Ahlami, Kamarul Zaman QA76 Computer software Sensitive information can be exposed to critical risks when communicated through computer networks. The ability of attackers in hiding their attacks' intention obstructs existing protection systems to early prevent their attacks and avoid any possible sabotage in network systems. In this paper, we propose a similarity approach called Attack Intention Recognition based on Similarity of Evidences (AIRSE). In particular, the proposed approach AIRSE aims to recognize attack intention in real time. It classifies attacks according to their characteristics and uses the similar metric method to identify attacks motives and predict their intentions. In this study, attack intentions are categorized into specific and general intentions. General intentions are recognized by investigating violations against the security metrics of confidentiality, integrity, availability, and authenticity. Specific intentions are recognized by investigating the network attacks used to achieve a violation. The obtained results demonstrate that the proposed approach is capable of investigating similarity of attack signatures and recognizing the intentions of network attack. EAI 2017-03-09 Conference or Workshop Item PeerReviewed pdf en http://umpir.ump.edu.my/id/eprint/27010/1/AIRSE%20-%20an%20approach%20for%20attack%20intention%20recognition%20based.pdf pdf en http://umpir.ump.edu.my/id/eprint/27010/7/AIRSE%20an%20approach%20for%20attack%20intention%20recognition%20based%20on%20similarity%20of%20evidences.pdf Ahmed, Abdulghani Ali and Noorul Ahlami, Kamarul Zaman (2017) AIRSE : an approach for attack intention recognition based on similarity of evidences. In: 1st EAI International Conference on Computer Science and Engineering, COMPSE 2016, 11-12 November 2016 , Penang, Malaysia. . ISBN 9781631901362 http://dx.doi.org/10.4108/eai.27-2-2017.152343
repository_type Digital Repository
institution_category Local University
institution Universiti Malaysia Pahang
building UMP Institutional Repository
collection Online Access
language English
English
topic QA76 Computer software
spellingShingle QA76 Computer software
Ahmed, Abdulghani Ali
Noorul Ahlami, Kamarul Zaman
AIRSE : an approach for attack intention recognition based on similarity of evidences
description Sensitive information can be exposed to critical risks when communicated through computer networks. The ability of attackers in hiding their attacks' intention obstructs existing protection systems to early prevent their attacks and avoid any possible sabotage in network systems. In this paper, we propose a similarity approach called Attack Intention Recognition based on Similarity of Evidences (AIRSE). In particular, the proposed approach AIRSE aims to recognize attack intention in real time. It classifies attacks according to their characteristics and uses the similar metric method to identify attacks motives and predict their intentions. In this study, attack intentions are categorized into specific and general intentions. General intentions are recognized by investigating violations against the security metrics of confidentiality, integrity, availability, and authenticity. Specific intentions are recognized by investigating the network attacks used to achieve a violation. The obtained results demonstrate that the proposed approach is capable of investigating similarity of attack signatures and recognizing the intentions of network attack.
format Conference or Workshop Item
author Ahmed, Abdulghani Ali
Noorul Ahlami, Kamarul Zaman
author_facet Ahmed, Abdulghani Ali
Noorul Ahlami, Kamarul Zaman
author_sort Ahmed, Abdulghani Ali
title AIRSE : an approach for attack intention recognition based on similarity of evidences
title_short AIRSE : an approach for attack intention recognition based on similarity of evidences
title_full AIRSE : an approach for attack intention recognition based on similarity of evidences
title_fullStr AIRSE : an approach for attack intention recognition based on similarity of evidences
title_full_unstemmed AIRSE : an approach for attack intention recognition based on similarity of evidences
title_sort airse : an approach for attack intention recognition based on similarity of evidences
publisher EAI
publishDate 2017
url http://umpir.ump.edu.my/id/eprint/27010/
http://umpir.ump.edu.my/id/eprint/27010/
http://umpir.ump.edu.my/id/eprint/27010/1/AIRSE%20-%20an%20approach%20for%20attack%20intention%20recognition%20based.pdf
http://umpir.ump.edu.my/id/eprint/27010/7/AIRSE%20an%20approach%20for%20attack%20intention%20recognition%20based%20on%20similarity%20of%20evidences.pdf
first_indexed 2023-09-18T22:42:22Z
last_indexed 2023-09-18T22:42:22Z
_version_ 1777416999943536640

Similar Items