A Novel Security Architecture Based on Multi-level Rule Expression Language [chapter]

Samih Souissi, Layth Sliman, Benoit Charroux
2015 Advances in Intelligent Systems and Computing  
This paper introduces an attack detection and response system based on multi-level rule expression language. It provides a framework to evaluate, identify, classify and defend against sophisticated attacks. Our approach helps simplifying complex rules' expression and alert handling, thanks to a modular architecture and an intuitive rules along with a powerful expression language. The proposed system is flexible and takes into account several attack properties in order to simplify attack handling and aggregate defense mechanisms.
doi:10.1007/978-3-319-27221-4_22 fatcat:cbdmnwtgibh7feb5ueb3itooqi