Computer Science North Carolina State University / North Carolina State University / /
IndustryTerm
vulnerability scanning tools / distributed network / example alert-attribute network / intrusion detection systems / system monitoring/scanning tools / administrator tool / intrusion response systems / web page file / system scanning tools / alertattribute network / system monitoring tools / file system integrity monitoring tools / ftp server / alert-attribute network / system monitoring tool / alert-attribute network generation tool / system scanning/monitoring tools / security tools / alert-attribute networks / inference using these networks / system process tools / operational network / /
OperatingSystem
Linux / Microsoft Windows / /
Organization
U.S. Army Research Office / National Science Foundation / MIT Lincoln Lab. / Department of Computer Science / Douglas S. Reeves Cyber Defense Laboratory Department of Computer Science North Carolina State University Raleigh / North Carolina State University / /
Person
Yan Zhai / Douglas S. Reeves Cyber / Lincoln Lab / /
Position
formal data model for IDS alert correlation / Administrator / requires/provides model for computer attacks / /
Product
Snort version 1.9.1 / Snort 1.9.1 / /
ProvinceOrState
North Carolina / /
Technology
SNMP / Linux / udp / html / anti-virus software / http / Data Mining / /
Reasoning about Complementary Intrusion Evidence∗ Yan Zhai, Peng Ning, Purush Iyer, Douglas S. Reeves Cyber Defense Laboratory Department of Computer Science North Carolina State University Raleigh, NC