Sandeep Kumar, Eugene H. Spafford  Home/Search
Context Related
| iti.informatik.tu...atMatIntrDet.ps.gz ccert.edu.cn/documents/./9413.ps Cached: PS.gz PS PDF This document uses CoBlitz to cache paper downloads. If your firewall is blocking outgoing connections to port 3125, you can use these links to download local copies.
Image Update HelpPS.gz PS PDF From: iti.informatik.tudarmst...events (more) Homepages: S.Kumar |
Rate this article:      (best)Comment on this article |
Abstract: This report examines and classifies the characteristics of signatures used in misuse intrusion detection. Efficient algorithms to match patterns in some of these classes are described. A generalized model for matching intrusion signatures based on Colored Petri Nets is presented, and some of its properties are derived. 1 Introduction Computer break-ins and their misuse have become common features [Met87, Bos88, Sto88, Mar88, Rei87, SSH93]. The number, as well as sophistication, of attacks on... (Update)
Cited by: More
A Multiagent Approach to Outbound Intrusion Detection - Mandujano (2004) (Correct)
Evolutionary Design of Intrusion Detection Programs - Abraham, Grosan, Martin-Vide (2006) (Correct)
Intrusion Detection Systems Using Decision Trees and.. - Sandhya.. (Correct)
Similar documents (at the sentence level):
62.5%: An Application of Pattern Matching in Intrusion Detection - Kumar, Spafford (1994) (Correct)
11.1%: Classification And Detection Of Computer Intrusions - Kumar (1995) (Correct)
Active bibliography (related documents): More All
1.9: Intrusion Detection: A Study - Blomqvist, Skantze (1995) (Correct)
1.3: A Pattern Matching Model for Misuse Intrusion Detection - Kumar, Spafford (1994) (Correct)
0.8: Anomaly Intrusion Detection Systems: Handling Temporal.. - Seleznyov, Puuronen (1999) (Correct)
Similar documents based on text: More All
0.3: Intrusion Detection with Unlabeled Data Using Clustering - Portnoy (2001) (Correct)
0.3: From Declarative Signatures to Misuse IDS - Pouzol, Ducassé (2001) (Correct)
0.2: A Software Architecture to support Misuse Intrusion Detection. - Kumar, Spafford (1995) (Correct)
Related documents from co-citation: More All
17: An Intrusion Detection Model (context) - Denning - 1987
15: USTAT: A Real-Time Intrusion Detection System for UNIX - Ilgun - 1992
12: Expert system in intrusion detection: A case study (context) - Sebring, Shellhouse et al. - 1988
BibTeX entry: (Update)
Sandeep Kumar and Eugene Spafford. An Application of Pattern Matching in Intrusion Detection. Technical Report 94-013, Department of Computer Sciences, Purdue University, March 1994. http://citeseer.ist.psu.edu/article/kumar94application.html More
@techreport{ kumar94application,
author = "Sandeep Kumar and Eugene Spafford",
title = "{An Application of Pattern Matching in Intrusion Detection}",
number = "94-013",
address = "Department of Computer Sciences",
year = "1994",
url = "citeseer.ist.psu.edu/article/kumar94application.html" }
Citations (may not include all citations):1399 Compilers: Principles (context) - Aho, Sethi et al. - 1986
347 Fast Pattern Matching in Strings (context) - Knuth, Morris et al. - 1977
270 The String-to-String Correction Problem (context) - Wagner, Fischer - 1974
244 Cryptography and Data Security (context) - Denning - 1982 ACM DBLP
216 Coloured Petri Nets -- Basic Concepts (context) - Jensen - 1992
214 A Fast String Searching Algorithm (context) - Boyer, Moore - 1977 ACM DBLP
155 Secure Computer Systems: Mathematical Foundations and Model (context) - Bell, LaPadula - 1973
153 Autoclass: A Bayesian Classification System (context) - Cheeseman, Kelly et al. - 1988 DBLP
148 RETE: A Fast Algorithm for the Many Pattern/Many Object Patt.. (context) - Forgy - 1982
137 Efficient String Matching: An Aid to Bibliographic Search (context) - Aho, Corasick - 1975 DBLP
121 An Intrusion-Detection Model (context) - Denning - 1987
96 Bayesian Networks Without Tears (context) - Charniak - 1991 ACM DBLP
81 A New Approach to Text Searching (context) - Baeza-Yates, Gonnet - 1989 ACM DBLP
62 Introduction to Algorithms : A Creative Approach (context) - Manber - 1989
59 USTAT: A Real-Time Intrusion Detection System for UNIX - Ilgun - 1992
56 A Survey of Intrusion Detection Techniques (context) - Lunt - 1993 ACM
56 A Real-Time Intrusion Detection Expert System (context) - Lunt, Tamaru et al. - 1992
53 The Internet Worm Program: An Analysis - Spafford - 1988 ACM
46 The COPS Security Checker System - Farmer, Spafford - 1991 DBLP
45 Approximate Matching of Regular Expressions (context) - Myers, Miller - 1989
41 Expert Systems in Intrusion Detection: A Case Study (context) - Sebring, Shellhouse et al. - 1988
38 Haystack: An Intrusion Detection System (context) - Smaha - 1988
31 Model based Intrusion Detection (context) - Garvey, Lunt - 1991
30 The Architecture of a Network Level Intrusion Detection Syst.. (context) - Heady, Luger et al. - 1990
30 Artificial Intelligence (context) - Winston - 1992
29 Programming Languages and Their Compilers: Preliminary Notes (context) - Cocke, Schwartz - 1970
28 Penetration State Transition Analysis -- A Rule-Based Intrus.. (context) - Porras, Kemmerer - 1992
28 ASAX: Software Architecture and Rule-based Language for Univ.. - Habra, Le Charlier et al. - 1992 DBLP
25 A Neural Network Approach Towards Intrusion Detection (context) - Fox, Henning et al. - 1990
19 Knowledge based Intrusion Detection (context) - Lunt, Jagannathan et al. - 1989
15 Fischer and Richard J (context) - Charles - 1988
14 Fast Text Searching With Errors - Wu, Manber - 1991
13 Security Audit Trail Analysis Using Inductively Generated Pr.. (context) - Teng, Chen et al. - 1990 ACM
13 Stalking the Wily Hacker (context) - Stoll - 1988 ACM DBLP
11 A Method To Detect Intrusive Activity in a Networked Environ.. (context) - Heberlein, Levitt et al. - 1991
10 Information Systems Directorate (context) - Giarratano, User's et al. - 1992
10 Crisis and Aftermath (context) - Spafford - 1989 ACM DBLP
8 System Design Document: Next-Generation Intrusion Detection .. (context) - Jagannathan, Lunt et al. - 1993
7 Intrusion Detection: Its Role and Validation (context) - Liepins, Vaccaro - 1992
6 Intrusion Detection: The Application of Feature Selection (context) - Doak - 1992
6 NIDX -- An Expert System for Real-Time Network Intrusion Det.. (context) - Bauer, Koblentz - 1988
6 Correcting Counter-Automaton Recognizable Languages (context) - Wagner, Seiferas - 1978
6 Anomaly Detection: Purpose and Framework (context) - Liepins, Vaccaro - 1989
5 Bayesian Classification with Correlation and Inheritance (context) - Cheeseman, Hanson et al. - 1991 DBLP
5 Integrity Constraints for Secure Computer Systems (context) - Biba - 1977
5 Reflections on Some Recent Widespread Computer Break-Ins (context) - Reid - 1987 ACM
4 Paradigms for the reduction of Audit Trails (context) - Wetmore - 1993
3 Real-Time Audit Log Viewer And Analyzer (context) - Moitra
3 A Non-Parametric Pattern recognition to Anomaly Detection (context) - Lankewicz - 1992
3 Analysis of Audit and Protocol Data Using Methods from Artif.. (context) - Weiss, Baur - 1990
3 The TAMU Security Package: An Outgoing Response to Internet .. (context) - Safford, Schales et al. - 1993
3 An Inductive Engine for the Acquisition of Temporal Knowledg.. (context) - Chen - 1988
3 International Computer Science Series (context) - Jackson, Expert - 1986
2 Probabilistic Reasoning in Expert Systems (context) - Pearl - 1988
2 Questions about CMAD (context) - Smaha - 1992
1 Computer break-ins (context) - Metz - 1987
1 electronic security expert (context) - Markoff, computer et al. - 1988
1 Atallah and Alberto Apostolico (context) - Mikhail - 1993
1 Boston Herald (context) - puts, computers - 1988
1 A Pattern Oriented Intrusion Model and its Applications (context) - Shieh, Gligor - 1991
1 Signature Analysis Model Definition and Formalism (context) - Snapp, Smaha - 1992
The graph only includes citing articles where the year of publication is known.
Documents on the same site (http://www.iti.informatik.tu-darmstadt.de/~kehr/bib/events/events.html): More
Snoop: An Expressive Event Specification Language For.. - Chakravarthy, Mishra (1993) (Correct)
Monitoring of Distributed Systems - Mansouri-Samani (1993) (Correct)
The ECO model: events + constraints + objects - Starovic Cahill (1995) (Correct)
Online articles have much greater impact More about CiteSeer.IST Add search form to your site Submit documents Feedback
CiteSeer.IST - Copyright Penn State and NEC