Research Article
Network Intrusion Detection with Threat Agent Profiling
Table 2
Significant key in IDEA format.
| | Name of key | Type | Example |
| | Category | Array of Event | Recon.Scanning | | Source:IP4 | Array of Net4 | 10.10.0.1 | | Source:Port | Array of Integer | 6550 | | Source:Proto | Array of ProtocolName | TCP | | Target:IP4 | Array of Net4 | 10.10.10.2 | | Target:Port | Array of Integer | 80 | | Target:Proto | Array of ProtocolName | HTTP | | EventTime | Timestamp | 2017-03-16 18:06:44 | | CeaseTime | Timestamp | 2017-03-31 21:51:30 |
|
|
