Correlation Analysis Approach About Numerous Security Information and Event in Telecommunication Network
Correlation analysis engine which correlate isolated security event as a chain to find out the real threat from a large number of false alarms or low level ones,is a key module of security operations centre(SOC).The traditional correlation analysis mechanism is divided into two types:state machine a...
Saved in:
| Main Authors: | , , , |
|---|---|
| Format: | Article |
| Language: | zho |
| Published: |
Beijing Xintong Media Co., Ltd
2013-10-01
|
| Series: | Dianxin kexue |
| Subjects: | |
| Online Access: | http://www.telecomsci.com/thesisDetails#10.3969/j.issn.1000-0801.2013.10.029 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Summary: | Correlation analysis engine which correlate isolated security event as a chain to find out the real threat from a large number of false alarms or low level ones,is a key module of security operations centre(SOC).The traditional correlation analysis mechanism is divided into two types:state machine and inference-engine.For poor precision and low efficiency,they don't adapt telecom network application.A new correlation analysis mechanism based on consecutive state by inference-engine was presented,which executed efficiently and accurately,to solve the problems of correlation analysis engine applied in telecom network. |
|---|---|
| ISSN: | 1000-0801 |