See this document in CiteSeerX!

A Query Facility for Common Intrusion Detection Framework (2000)  (Make Corrections)  (3 citations)
Peng Ning, X. Sean Wang, Sushil Jajodia



  Home/Search   Context   Related

 
View or download:
ncsu.edu/faculty/ning/pubs...nissc00.ps
ncsu.edu/~pning/pubs/nissc00.ps
Cached:  PS.gz  PS  PDF   Image  Update  Help

From:  ncsu.edu/faculty/ning/vitae (more)
(Enter author homepages)

Rate this article: (best)
  Comment on this article  
(Enter summary)

Abstract: It is essential for intrusion detection systems to share information in order to discover attacks involving multiple sites. Common Intrusion Detection Framework (CIDF) is an important step towards enabling different intrusion detection and response (IDR) components to interoperate with each other. Although CIDF provides an infrastructure and language support that allows an IDR component to understand the information sent by another component, it does not contain a facility for a component to... (Update)

Context of citations to this paper:   More

...it is limited to occur between the adjacent levels of the hierarchy and in AAFID, it is allowed only within a host. Ning et al. [11, 12] recognize the importance of the querying facility in cooperative intrusion detection systems. They propose an extension to the common...

Cited by:   More
A Framework for Distributed Intrusion Detection using.. - Gopalakrishna, Spafford (2001)   (Correct)
Abstraction-based Intrusion Detection in Distributed.. - Ning, Jajodia, Wang (2001)   (Correct)

Similar documents (at the sentence level):
73.3%:   A Query Facility for Common Intrusion Detection Framework - Peng Ning Sean (2000)   (Correct)
8.4%:   Modeling Requests among Cooperating Intrusion Detection Systems - Ning, Wang, Jajodia (2000)   (Correct)

Active bibliography (related documents):   More   All
0.3:   SHOMAR: An Open Architecture for Distributed Intrusion .. - Undercoffer, Perich..   (Correct)
0.3:   Using Internal Sensors For Computer Intrusion Detection - Zamboni (2001)   (Correct)
0.3:   Intrusion Confinement By Isolation In Information Systems - Liu, Jajodia, McCollum (2000)   (Correct)

Similar documents based on text:   More   All
0.8:   A Survey of Commercial Tools for Intrusion Detection - Kvarnström (1999)   (Correct)
0.8:   Intrusion Detection Inter-component Adaptive Negotiation - Feiertag, Benzinger.. (1999)   (Correct)
0.6:   Automated Discovery of Concise Predictive Rules for.. - Helmer, Wong.. (2000)   (Correct)

Related documents from co-citation:   More   All
4:   Abstraction-based misuse detection: High-level specications and adaptable strate.. - Lin, Wang et al. - 1998
3:   Distributed Intrusion Detection System) -- motivation (context) - Snapp, Brentano et al. - 1991
3:   A common intrusion specification language (context) - Feiertag, Kahn et al. - 2000

BibTeX entry:   (Update)

P. Ning, X. S. Wang, and S. Jajodia. A query facility for common intrusion detection framework. In Proceedings of 23rd National Information Systems Security Conference, pages 317--328, Baltimore, MD, 2000. http://citeseer.ist.psu.edu/article/ning00query.html   More

@misc{ ning00query,
  author = "P. Ning and X. Wang and S. Jajodia",
  title = "A query facility for common intrusion detection framework",
  text = "P. Ning, X. S. Wang, and S. Jajodia. A query facility for common intrusion
    detection framework. In Proceedings of 23rd National Information Systems
    Security Conference, pages 317--328, Baltimore, MD, 2000.",
  year = "2000",
  url = "citeseer.ist.psu.edu/article/ning00query.html" }
Citations (may not include all citations):
105   State transition analysis: A rule-based intrusion detection .. - Ilgun, Kemmerer et al. - 1995
58   A pattern matching model for misuse intrusion detection - Kumar, Spafford - 1994
48   Classification and Detection of Computer Intrusions - Kumar - 1995
22   Abstraction-based misuse detection: Highlevel specifications.. - Lin, Wang et al. - 1998
15   A common intrusion detection framework (context) - Kahn, Porras et al. - 1998
8   Holding intruders accountable on the internet - Staniford-Chen, Heberlein
7   A common intrusion specification language (context) - Feiertag, Kahn et al. - 1998
7   The common intrusion detection framework architecture (context) - Porras, Schnackenberg et al. - 1998
7   CARDS: A distributed system for detecting coordinated attack.. - Yang, Ning et al.
5   Communication in the common intrusion detection framework (context) - Kahn, Bolinger et al. - 1998
4   Intrusion detection and response research at DARPA (context) - Lunt, McCollum - 1999
2   CIDF APIs: Their care and feeding (context) - Tung - 1998
1   Advances in Research and Application of Network Security (context) - Ning, Wang et al. - 2000
http://www.ietf.org/html.charters/idwgcharters

Documents on the same site (http://www.csc.ncsu.edu/faculty/ning/vitae.html):   More
Abstraction-based Intrusion Detection in Distributed.. - Ning, Jajodia, Wang (2001)   (Correct)
Discovering Calendar-based Temporal Association Rules - Li, Ning, Wang, Jajodia (2001)   (Correct)
An Algebraic Representation of Calendars - Ning, Wang, Jajodia (2001)   (Correct)

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC