Title :
Artificial immunity-based correlation system
Author :
Suarez-Tangil, Guillermo ; Palomar, Esther ; Pastrana, Sergio ; Ribagorda, Arturo
Author_Institution :
Department of Computer Science, University Carlos III of Madrid, Avda. Universidad 30, 28911, Spain
Abstract :
Security information event management (SIEM) technologies focus on developing effective methods and tools to assist network administrators during the whole network security management. Though there is a vast number of novel initiatives and contributions in providing adaptiveness and intelligence in this research field, there are still many problems that need be solved. In particular, event correlation are currently emerging as an essential field to be optimized specially due to the widespread adoption of botnets to launch attacks. This position paper explores the biological immune system´s characteristics of learning and memory to solve the semi-automatic generation of event correlation rules by applying Artificial Immune Systems (AISs).
Keywords :
Chaos; Correlation; Genetics; Immune system; Pattern recognition; Protocols; Adaptive system; Artificial immune system; Event correlation; Intelligent rule generation; Security event information management system;
Conference_Titel :
Security and Cryptography (SECRYPT), 2011 Proceedings of the International Conference on
Conference_Location :
Seville, Spain
