Panacea: automating attack classification for anomaly-based network intrusion detection systems

D. Bolzoni; S. Etalle; P.H. Hartel

doi:10.1007/978-3-642-04342-0_1

Panacea: automating attack classification for anomaly-based network intrusion detection systems

D. Bolzoni, S. Etalle, P.H. Hartel

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

21 Citations (Scopus)

Abstract

Anomaly-based intrusion detection systems are usually criticized because they lack a classification of attacks, thus security teams have to manually inspect any raised alert to classify it. We present a new approach, Panacea, to automatically and systematically classify attacks detected by an anomaly-based network intrusion detection system.

Original language	English
Title of host publication	Recent Advances in Intrusion Detection
Subtitle of host publication	12th International Symposium, RAID 2009, Saint-Malo, France, September 23-25, 2009. Proceedings
Editors	E. Kirda, S. Jha, D. Balzarotti
Place of Publication	Berlin
Publisher	Springer
Chapter	1
Pages	1-20
Number of pages	20
ISBN (Electronic)	978-3-642-04342-0
ISBN (Print)	978-3-642-04341-3
DOIs	https://doi.org/10.1007/978-3-642-04342-0_1
Publication status	Published - 2009

Publication series

Name	Lecture Notes in Computer Science (LNCS)
Volume	5758
ISSN (Print)	0302-9743

Access to Document

10.1007/978-3-642-04342-0_1

Cite this

Bolzoni, D., Etalle, S., & Hartel, P. H. (2009). Panacea: automating attack classification for anomaly-based network intrusion detection systems. In E. Kirda, S. Jha, & D. Balzarotti (Eds.), Recent Advances in Intrusion Detection: 12th International Symposium, RAID 2009, Saint-Malo, France, September 23-25, 2009. Proceedings (pp. 1-20). (Lecture Notes in Computer Science (LNCS); Vol. 5758). Springer. https://doi.org/10.1007/978-3-642-04342-0_1

Bolzoni, D. ; Etalle, S. ; Hartel, P.H. / Panacea : automating attack classification for anomaly-based network intrusion detection systems. Recent Advances in Intrusion Detection: 12th International Symposium, RAID 2009, Saint-Malo, France, September 23-25, 2009. Proceedings. editor / E. Kirda ; S. Jha ; D. Balzarotti. Berlin : Springer, 2009. pp. 1-20 (Lecture Notes in Computer Science (LNCS)).

@inproceedings{c06e99798e9341aba366e8f5b24a1a02,

title = "Panacea: automating attack classification for anomaly-based network intrusion detection systems",

abstract = "Anomaly-based intrusion detection systems are usually criticized because they lack a classification of attacks, thus security teams have to manually inspect any raised alert to classify it. We present a new approach, Panacea, to automatically and systematically classify attacks detected by an anomaly-based network intrusion detection system.",

author = "D. Bolzoni and S. Etalle and P.H. Hartel",

year = "2009",

doi = "10.1007/978-3-642-04342-0_1",

language = "English",

isbn = "978-3-642-04341-3",

series = "Lecture Notes in Computer Science (LNCS)",

publisher = "Springer",

pages = "1--20",

editor = "E. Kirda and S. Jha and D. Balzarotti",

booktitle = "Recent Advances in Intrusion Detection",

address = "Germany",

}

Bolzoni, D, Etalle, S & Hartel, PH 2009, Panacea: automating attack classification for anomaly-based network intrusion detection systems. in E Kirda, S Jha & D Balzarotti (eds), Recent Advances in Intrusion Detection: 12th International Symposium, RAID 2009, Saint-Malo, France, September 23-25, 2009. Proceedings. Lecture Notes in Computer Science (LNCS), vol. 5758, Springer, Berlin, pp. 1-20. https://doi.org/10.1007/978-3-642-04342-0_1

Panacea : automating attack classification for anomaly-based network intrusion detection systems. / Bolzoni, D.; Etalle, S.; Hartel, P.H.

Recent Advances in Intrusion Detection: 12th International Symposium, RAID 2009, Saint-Malo, France, September 23-25, 2009. Proceedings. ed. / E. Kirda; S. Jha; D. Balzarotti. Berlin : Springer, 2009. p. 1-20 (Lecture Notes in Computer Science (LNCS); Vol. 5758).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

TY - GEN

T1 - Panacea

T2 - automating attack classification for anomaly-based network intrusion detection systems

AU - Bolzoni, D.

AU - Etalle, S.

AU - Hartel, P.H.

PY - 2009

Y1 - 2009

N2 - Anomaly-based intrusion detection systems are usually criticized because they lack a classification of attacks, thus security teams have to manually inspect any raised alert to classify it. We present a new approach, Panacea, to automatically and systematically classify attacks detected by an anomaly-based network intrusion detection system.

AB - Anomaly-based intrusion detection systems are usually criticized because they lack a classification of attacks, thus security teams have to manually inspect any raised alert to classify it. We present a new approach, Panacea, to automatically and systematically classify attacks detected by an anomaly-based network intrusion detection system.

U2 - 10.1007/978-3-642-04342-0_1

DO - 10.1007/978-3-642-04342-0_1

M3 - Conference contribution

SN - 978-3-642-04341-3

T3 - Lecture Notes in Computer Science (LNCS)

SP - 1

EP - 20

BT - Recent Advances in Intrusion Detection

A2 - Kirda, E.

A2 - Jha, S.

A2 - Balzarotti, D.

PB - Springer

CY - Berlin

ER -

Bolzoni D, Etalle S, Hartel PH. Panacea: automating attack classification for anomaly-based network intrusion detection systems. In Kirda E, Jha S, Balzarotti D, editors, Recent Advances in Intrusion Detection: 12th International Symposium, RAID 2009, Saint-Malo, France, September 23-25, 2009. Proceedings. Berlin: Springer. 2009. p. 1-20. (Lecture Notes in Computer Science (LNCS)). https://doi.org/10.1007/978-3-642-04342-0_1

Panacea: automating attack classification for anomaly-based network intrusion detection systems

Abstract

Publication series

Access to Document

Fingerprint

Cite this