@inproceedings{9bc636bb5b83436cb2c6fd49ff925d55,
title = "Monitoring security events using integrated Correlation-based techniques",
abstract = "We propose an adaptive cyber security monitoring system that integrates a number of component techniques to collect time-series situation information, perform intrusion detec- tion, and characterize and identify security events so corre- sponding defense actions can be taken in a timely and effec- tive manner. We employ a decision fusion algorithm with analytically proven performance guarantee for intrusion de- tection based on local votes from distributed sensors. The security events in the proposed system are represented as forms of correlation networks using random matrix theory and identified through the computation of network similarity measurement. Extensive simulation results on event identi- fication illustrate the efficacy of the proposed system.",
keywords = "Cyber security, Event correlation, Random matrix theory",
author = "Qishi Wu and Denise Ferebee and Yunyue Lin and Dipankar Dasgupta",
year = "2009",
doi = "10.1145/1558607.1558661",
language = "English (US)",
isbn = "9781605585185",
series = "ACM International Conference Proceeding Series",
booktitle = "CSIIRW09",
note = "CSIIRW 2009: 5th Annual Cyber Security and Information Intelligence Research Workshop: Cyber Security and Information Intelligence Challenges and Strategies ; Conference date: 13-04-2009 Through 15-04-2009",
}