Abstract

Intrusion response system (IRS) is one of the most important components in the network security solution that selects appropriate countermeasures to handle the intrusion alerts. Recently, many techniques have been proposed in designing an automated IRS. However, one of the big challenges in intrusion response system which is not considered in the literature is the lack of standardization for intrusion responses. So, this paper investigates how to model and manage the intrusion responses. We present a multilevel response model that provides a high-level view of intrusion responses. We also propose a foresight model to estimate the response cost by considering IDS alerts, network dependencies, attack damage, response impact, and probability of potential attacks. Furthermore, a data model is defined to represent and exchange the intrusion response messages with a standard format.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
DeepAir: Deep Reinforcement Learning for Adaptive Intrusion Response in Software-Defined Networks
Trung V Phan ... Thomas Bauschert
IEEE Transactions on Network and Service Management | VOL. 19
Trung V Phan, et. al.Trung V Phan ... Thomas Bauschert
01 Sep 2022
Intrusion Detection Based on Active Networks
...
Journal of Information Science and Engineering | VOL. 25
, et. al. ...
01 May 2009
A framework for adaptive, cost-sensitive intrusion detection and response system
Natalia Stakhanova
-
Natalia StakhanovaNatalia Stakhanova
27 Apr 2015
An intrusion response decision-making model based on hierarchical task network planning
Chengpo Mu ... Yingjiu Li
Expert Systems With Applications | VOL. 37
Chengpo Mu, et. al.Chengpo Mu ... Yingjiu Li
15 Aug 2009
View more papers

More From: Computers & Security

Paper Title
Journal
Date
Author
An innovative practical roadmap for optimal control strategies in malware propagation through the integration of RL with MPC
Mousa Tayseer Jafar ... Gang Li
Computers & Security | VOL. -
Mousa Tayseer Jafar, et. al.Mousa Tayseer Jafar ... Gang Li
01 Nov 2024
SecKG2vec: A Novel Security Knowledge Graph Relational Reasoning Method based on Semantic and Structural Fusion Embedding
Xiaojian Liu ... Wen Gu
Computers & Security | VOL. -
Xiaojian Liu, et. al.Xiaojian Liu ... Wen Gu
01 Nov 2024
Hierarchical Perception for Encrypted Traffic Classification via Class Incremental Learning
Zhiyuan Li ... Fanliang Bu
Computers & Security | VOL. -
Zhiyuan Li, et. al.Zhiyuan Li ... Fanliang Bu
01 Nov 2024
Privacy protection against user profiling through optimal data generalization
César Gil ... Jordi Forné
Computers & Security | VOL. -
César Gil, et. al.César Gil ... Jordi Forné
01 Nov 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.