Nowadays, IT systems are widely used to support the services offered from any infrastructure. This allows the improvement of business processes but on the other hand it exposes the infrastructure to cyber-attacks. Misuse and anomaly detection are two widely adopted approaches to discover known and unknown cyberattacks. In this paper we provide an overviewof the techniques currently adopted for misuse and anomaly detection and we discuss a conceptual architecture that exploits the advantages of both misuse and anomaly detection to improve cyber-security. Also we provide a conceptual description of an expert system that solves conflicts due to detection mismatches between misuse and anomaly detection techniques.
CITATION STYLE
Sicuranza, M., Paragliola, G., Sarno, C. D., & Garofalo, A. (2015). An hybrid architecture to enhanceattacks detection on itinfrastructure. Studies in Computational Intelligence, 570, 437–442. https://doi.org/10.1007/978-3-319-10422-5_45
Mendeley helps you to discover research relevant for your work.