期刊名称:Journal of Theoretical and Applied Information Technology
印刷版ISSN:1992-8645
电子版ISSN:1817-3195
出版年度:2012
卷号:36
期号:2
页码:284-290
出版社:Journal of Theoretical and Applied
摘要:The design and implementation of intrusion detection systems (IDS) remain an important area of research in the field of security of information systems. Despite the undeniable progress, much remains to be done to improve the security of computer networks today. For this, many mechanisms have been developed {[1], [2]}. In general, these systems are vulnerable to attack from unauthorized users (external attacks) as well as attacks by authorized users (internal attacks) who abuse the privileges granted to them. In this paper, our contribution consists of the design of an intrusion detection system based on security policy at three levels. This approach, very interesting even for complex information systems, allows administrators of information systems and responsibles of network security, the protection from external attacks and internal attacks.
关键词:Security Policy (SP); Intrusion Detection System (IDS); Alerts Correlation (AC); Data Fusion (DF); Network Security (NS)
