Jean-Philippe Pouzol, Mireille Ducassé  Home/Search
Context Related
| raidsymposium.org/raid2000/Ma...58.pdf Cached: PS.gz PS PDF This document uses CoBlitz to cache paper downloads. If your firewall is blocking outgoing connections to port 3125, you can use these links to download local copies.
Image Update HelpPS.gz PS PDF From: raidsymposium.org/raid...program (more) (Enter author homepages) |
Rate this article:      (best)Comment on this article |
Abstract: This article presents work in progress in the context of misuse scenario detection, where the scenarios are combinations of several actions. An example of a masquerading scenario is: #users manage to usurp the identity of someone, say x, then they copy the #le #bin#sh and change its access rights such that later executions of the copy will give the privileges of x (Update)
Context of citations to this paper: More
...Russel is very low level, and would benefit from a higher level language that would compile to Russel. This is the approach taken in [5], notably. Instead of compiling to Russel or some other system, we choose to provide our own lowlevel auditing engine, because they...
.... as Mounji notes, Russel is very low level, and would benefit from a higher level language that would compile to Russel (as in [5], notably) Instead of compiling to Russel, we choose to provide our own low level auditing engine, because it requires specific data...
Cited by: More
Log Auditing through Model-Checking - Roger, al. (2001) (Correct)
Similar documents (at the sentence level):
47.6%: Handling Generic Intrusion Signatures is not Trivial - Pouzol, Ducassé (2000) (Correct)
Active bibliography (related documents): More All
0.2: Improved Cylinder Air Charge Estimation for Transient Air.. - Grizzle, Cook, Milam (Correct)
0.2: An Application of Distributed Solid Modeling: Feature.. - Regli, Gupta, Nau (1994) (Correct)
0.2: Manufacturing Feature Instances: Which ones to recognize? - Gupta, al. (1994) (Correct)
Similar documents based on text: More All
0.7: From Declarative Signatures to Misuse IDS - Pouzol, Ducassé (2001) (Correct)
0.2: A Pattern Matching Based Filter for Audit - Reduction And Fast (2000) (Correct)
0.2: Benchmarking a distributed intrusion detection system.. - Abily, Ducassé (2000) (Correct)
Related documents from co-citation: More All
2: Bro: A system for detecting network intruders in real-time - Paxon - 1998
2: O'Reilly and Associates (context) - Wall, Christiansen et al. - 1996
2: Department of Computer Sciences - Kumar, Detection et al. - 1995
BibTeX entry: (Update)
M. Ducass e and J.-P. Pouzol. Handling generic intrusion signatures is not trivial. In Recent Advances in Intrusion Detection (RAID) Workshop, 2000. http://citeseer.ist.psu.edu/article/pouzol00handling.html More
@misc{ ducass00handling,
author = "M. Ducass and e Pouzol",
title = "Handling generic intrusion signatures is not trivial",
text = "M. Ducass e and J.-P. Pouzol. Handling generic intrusion signatures is
not trivial. In Recent Advances in Intrusion Detection (RAID) Workshop,
2000.",
year = "2000",
url = "citeseer.ist.psu.edu/article/pouzol00handling.html" }
Citations (may not include all citations):5 West Lafayette (context) - University - 1995
1 es Universitaires Notre-Dame de la Paix - Namur #Belgique (context) - thesis - 1997
Documents on the same site (http://www.raid-symposium.org/raid2000/program.html): More
Supporting Intrusion Detection by Graph Clustering and Graph.. - Tolle, Niggemann (2000) (Correct)
IDS/A: An Interface between Intrusion Detection System and.. - Hutchison, Welz (2000) (Correct)
Benchmarking a distributed intrusion detection system.. - Abily, Ducassé (2000) (Correct)
Online articles have much greater impact More about CiteSeer.IST Add search form to your site Submit documents Feedback
CiteSeer.IST - Copyright Penn State and NEC