Risk Evaluation for Host System Based on Theory of Evidence

Abstract

Bring forwards a new approach to evaluate the secure level for a host system. Kernel files of OS is frangible against intruders and virus, we can log suspicious events that access the kernel, and the threaten level of each event can be defined. By mining and analyzing the data in log, using the theory of evidence, we can calculate the risk level for the whole host system. On the base of the evaluation result, the administrator can decide to enhance or lower the host defense level.

5 Figures and Tables

Cite this paper

@article{Chunyan2007RiskEF, title={Risk Evaluation for Host System Based on Theory of Evidence}, author={Li Chun-yan and Guo Yi-zun}, journal={Eighth ACIS International Conference on Software Engineering, Artificial Intelligence, Networking, and Parallel/Distributed Computing (SNPD 2007)}, year={2007}, volume={1}, pages={120-124} }