Skip to Main content Skip to Navigation
Conference papers

Evaluating Reputation of Internet Entities

Václav Bartoš 1, 2 Jan Kořenek 1
2 CESNET [Prague]
ASCR - Czech Academy of Sciences [Prague]
Abstract : Security monitoring tools, such as honeypots, IDS, behavioral analysis or anomaly detection systems, generate large amounts of security events or alerts. These alerts are often shared within some communities using various alert sharing systems. Our research is focused on analysis of the huge amount of data present in these systems. In this work we focus on summarizing all alerts and other information known about a network entity into a measure called reputation score expressing the level of threat the entity poses. Computation of the reputation score is based on estimating probability of future attacks caused by the entity.
Complete list of metadatas

Cited literature [9 references]  Display  Hide  Download

https://hal.inria.fr/hal-01632738
Contributor : Hal Ifip <>
Submitted on : Friday, November 10, 2017 - 3:27:24 PM
Last modification on : Thursday, February 7, 2019 - 4:49:08 PM
Long-term archiving on: : Sunday, February 11, 2018 - 2:16:05 PM

File

385745_1_En_13_Chapter.pdf
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Václav Bartoš, Jan Kořenek. Evaluating Reputation of Internet Entities. 10th IFIP International Conference on Autonomous Infrastructure, Management and Security (AIMS), Jun 2016, Munich, Germany. pp.132-136, ⟨10.1007/978-3-319-39814-3_13⟩. ⟨hal-01632738⟩

Share

Metrics

Record views

62

Files downloads

156