Publication detail

Evaluating Reputation of Internet Entities

BARTOŠ, V. KOŘENEK, J.

Original Title

Evaluating Reputation of Internet Entities

Type

conference paper

Language

English

Original Abstract

Security monitoring tools, such as honeypots, IDS, behavioral analysis or anomaly detection systems, generate large amounts of security events or alerts. These alerts are often shared within some communities using various alert sharing systems. Our research is focused on analysis of the huge amount of data present in these systems. In this work we focus on summarizing all alerts and other information known about a network entity into a measure called reputation score expressing the level of threat the entity poses. Computation of the reputation score is based on estimating probability of future attacks caused by the entity.

Keywords

network, security, reputation, threat intelligence

Authors

BARTOŠ, V.; KOŘENEK, J.

Released

20. 6. 2016

Publisher

Springer International Publishing

Location

Munich

ISBN

978-3-319-39813-6

Book

Management and Security in the Age of Hyperconnectivity

Edition

Lecture Notes in Computer Science

Pages from

132

Pages to

136

Pages count

5

BibTex

@inproceedings{BUT130932,
  author="Václav {Bartoš} and Jan {Kořenek}",
  title="Evaluating Reputation of Internet Entities",
  booktitle="Management and Security in the Age of Hyperconnectivity",
  year="2016",
  series="Lecture Notes in Computer Science",
  volume="9701",
  pages="132--136",
  publisher="Springer International Publishing",
  address="Munich",
  doi="10.1007/978-3-319-39814-3\{_}13",
  isbn="978-3-319-39813-6"
}