Title :
Improvement and Implementation of IDMEF Data Model
Author :
Ming Han ; Xu Dewu ; Chen Wei
Author_Institution :
Math, Phys. & Inf. Eng. Coll., Zhejiang Normal Univ., Jinhua, China
Abstract :
The rapidly increasing series of Internet-scale disrupted threat is a pressing problem for every organization that utilizes the network. Many research institutions focus on collaborative security, of which collaborative intrusion detection is an important component. Sharing data among widely distributed intrusion detection systems is essential. To this end, IDWG (intrusion detection working group) proposed a draft in IDMEF (intrusion detection message exchange format). This paper aims at improving the IDMEF data model to foster interoperability and to maximize extensibility the messages which represented in XML. This is expected to become a generally-useful type of data. Finally, it implements the new IDMEF data model in XML.
Keywords :
Internet; XML; computer network security; open systems; IDMEF data model; Internet-scale disrupted threat; XML; collaborative intrusion detection; collaborative security; distributed intrusion detection systems; interoperability; intrusion detection message exchange format; intrusion detection working group; Collaboration; Collaborative work; Computational modeling; Computer networks; Data models; Data security; Information security; Intrusion detection; Physics computing; XML; Alert Correlation; Collaborative Security; IDMEF; IDS; XML;
Conference_Titel :
Computer Modeling and Simulation, 2010. ICCMS '10. Second International Conference on
Conference_Location :
Sanya, Hainan
Print_ISBN :
978-1-4244-5642-0
Electronic_ISBN :
978-1-4244-5643-7
DOI :
10.1109/ICCMS.2010.279
