Research Article
Network Intrusion Detection with Threat Agent Profiling
Table 2
Significant key in IDEA format.
| Name of key | Type | Example |
| Category | Array of Event | Recon.Scanning | Source:IP4 | Array of Net4 | 10.10.0.1 | Source:Port | Array of Integer | 6550 | Source:Proto | Array of ProtocolName | TCP | Target:IP4 | Array of Net4 | 10.10.10.2 | Target:Port | Array of Integer | 80 | Target:Proto | Array of ProtocolName | HTTP | EventTime | Timestamp | 2017-03-16 18:06:44 | CeaseTime | Timestamp | 2017-03-31 21:51:30 |
|
|