IP flow data correlation with inference rules

Ci Bin Jiang, Jung Shian Li

Research output: Chapter in Book/Report/Conference proceedingConference contribution

1 Citation (Scopus)

Abstract

In recent years, IP flow identification in botnet detection attracts attentions in network security. IP flows associated with bot masters can be used to trace the botnet source. Most botnets suffer a large of IP-based attacks. This paper attempts to explore the correlations between attack behaviors and IP flows. By data collection, sets of functions concerning inference rules and conversion of data format, this paper successfully identifies the botnet attacks by IP flows and the inference patterns. The IP flow-based intrusion detection can efficiently find alert data correlation.

Original languageEnglish
Title of host publicationMEMS, NANO and Smart Systems
Pages1211-1213
Number of pages3
DOIs
Publication statusPublished - 2012
Event2011 7th International Conference on MEMS, NANO and Smart Systems, ICMENS 2011 - Kuala Lumpur, Malaysia
Duration: 2011 Nov 42011 Nov 6

Publication series

NameAdvanced Materials Research
Volume403-408
ISSN (Print)1022-6680

Other

Other2011 7th International Conference on MEMS, NANO and Smart Systems, ICMENS 2011
Country/TerritoryMalaysia
CityKuala Lumpur
Period11-11-0411-11-06

All Science Journal Classification (ASJC) codes

  • General Engineering

Fingerprint

Dive into the research topics of 'IP flow data correlation with inference rules'. Together they form a unique fingerprint.

Cite this