Towards Ontology-Based Intelligent Model for Intrusion Detection and Prevention.
ABSTRACT Nowadays new intelligent techniques have been used to improve the intrusion detection process in distributed environments.
This paper presents an approach to define an ontology model for representing intrusion detection and prevention events as
well as a hybrid intelligent system based on clustering and Artificial Neuronal Networks for classification and pattern recognition.
We have specified attacks signatures, reaction rules, asserts, axioms using Ontology Web Language with Description Logic (OWL-DL)
with event communication and correlation integrated on Multi-Agent Systems, incorporating supervised and unsupervised models
and generating intelligent reasoning.
KeywordsOntology-Intelligence Security-Intrusion Prevention-Multi-agent systems
- [Show abstract] [Hide abstract]
ABSTRACT: described the problem of modeling the behavior of a typical user of an electronic information system to detect the fact of use of his account by another person. Investigated method that allows presenting the typical behavior of a user in the form of Markov model and further assessing the target user's behavior compared with the pattern presented in the corresponding model. In the process of research an experimental system was developed that allows evaluating the possibility of using Markov models to solve this problem and the statistical properties of the created model. The results of the initial experiments show good suitability of this approach.01/2011;
- Revista GTI con ISSN 1657-8236 (E – ISSN 2027-8330). 08/2013; 12(33).
- Vector. 12/2010; 2010(1):69-77.