See this document in CiteSeerX!

Building Survivable Systems: An Integrated Approach based on Intrusion Detection and Damage Containment (2000)  (Make Corrections)  (7 citations)
T. Bowen, D. Chee, M. Segal, R. Sekar, T. Shanbhag, P. Uppuluri



  Home/Search   Context   Related

 
View or download:
sunysb.edu/sekar/papers/discex00.ps
Cached:  PS.gz  PS  PDF   Image  Update  Help

From:  sunysb.edu/ccs/publications (more)
(Enter author homepages)

Rate this article: (best)
  Comment on this article  
(Enter summary)

Abstract: Reliance on networked information systems to support critical infrastructures prompts interest in making network information systems survivable, so that they continue functioning even when under attack. To build survivable systems, attacks must be detected and reacted to before they impact performance or functionality. Previous survivable systems research focussed primarily on detecting intrusions, rather than on preventing or containing damage due to intrusions. We have therefore developed a... (Update)

Cited by:   More
Model-Carrying Code: A Practical Approach for Safe .. - Sekar.. (2003)   (Correct)
Specification-based Anomaly Detection: A New.. - Sekar, Gupta.. (2002)   (Correct)

Similar documents (at the sentence level):
41.5%:   Building Survivable Systems: An Integrated.. - Bowen, Chee.. (2000)   (Correct)
16.3%:   A High-Performance Network Intrusion Detection System - Sekar, Guang, Verma, Shanbhag (1999)   (Correct)
14.0%:   Synthesizing Fast Intrusion Prevention/Detection Systems from .. - Sekar, Uppuluri (1999)   (Correct)

Active bibliography (related documents):   More   All
0.5:   An Approach for Detecting Self-Propagating Email Using Anomaly .. - Gupta, Sekar (2003)   (Correct)
0.5:   Intrusion Detection: A Bibliography - Mé, Michel (2001)   (Correct)
0.4:   User-Level Infrastructure for System Call Interposition: A.. - Jain, Sekar (2000)   (Correct)

Similar documents based on text:   More   All
0.7:   A Specification-Based Approach for Building Survivable Systems - Segal (1998)   (Correct)
0.5:   Requirements Definition for Survivable Network Systems - Linger, Mead, Lipson (1997)   (Correct)
0.5:   Abstracting Security Specifications in Building Survivable.. - Jenny Li And (1999)   (Correct)

Related documents from co-citation:   More   All
7:   Synthesizing Fast Intrusion PreventionDetection System from High Level Specifica.. - Uppuluri, Intrusion et al. - 1999
5:   Automatic Verification of Finite-State Concurrent Systems Using Temporal Logic S.. (context) - Clarke, Emerson et al. - 1986
5:   A Secure Environment for Untrusted Helper Applications --- Confining the Wily Ha.. - Goldberg, Wagner et al. - 1996

BibTeX entry:   (Update)

R Bowen, D Chee, M Segal, R Sekar, P Uppuluri, and T Shanbag. Building survivable systems: An integrated approach based on intrusion detection and confinement. In DARPA Information Security Symposium, 2000. http://citeseer.ist.psu.edu/article/bowen00building.html   More

@misc{ bowen00building,
  author = "R. Bowen and D. Chee and M. Segal and R. Sekar and P. Uppuluri and T. Shanbag",
  title = "Building survivable systems: An integrated approach based on intrusion
    detection and confinement",
  text = "R Bowen, D Chee, M Segal, R Sekar, P Uppuluri, and T Shanbag. Building
    survivable systems: An integrated approach based on intrusion detection
    and confinement. In DARPA Information Security Symposium, 2000.",
  year = "2000",
  url = "citeseer.ist.psu.edu/article/bowen00building.html" }
Citations (may not include all citations):
299   The BSD Packet Filter: A New Architecture for User-level Pac.. - McCanne, Jacobson - 1992
175   A Secure Environment for Untrusted Helper Applications - Goldberg, Wagner et al. - 1996
141   StackGuard: Automatic Adaptive Detection and Prevention of B.. - Cowan, Pu et al. - 1998
131   An Event-Based Architecture Definition Language - Luckham, Vera - 1995
123   Bro: A System for Detecting Network Intruders in Real-Time - Paxson - 1998
123   PLAN: A Packet Language for Active Networks - Hicks, Kakkar et al. - 1998
121   An Intrusion Detection Model (context) - Denning - 1987
121   Network Intrusion Detection (context) - Mukherjee, Heberlein et al. - 1994
100   Interposition Agents: Transparently Interposing User Code at.. - Jones - 1993
74   Computer Immunology - Forrest, Hofmeyr et al. - 1997
66   Enforceable Security Policies - Schneider - 1998
63   Next-generation Intrusion Detection Expert System - Anderson, Lunt et al. - 1995
63   Hardening COTS software with Generic Software Wrappers - Fraser, Badger et al. - 1999
59   Execution Monitoring of Security-Critical Programs in a Dist.. (context) - Ko - 1996
56   A Real-Time Intrusion Detection Expert System (context) - Lunt - 1992
56   A survey of Intrusion Detection Techniques (context) - Lunt - 1993
54   SLIC: An Extensibility System for Commodity Operating System.. - Ghormley, Petrou et al. - 1998
44   Implementing A Generalized Tool For Network Monitoring - Ranum - 1997
43   NADIR: An Automated System for Detecting Network Intrusion a.. (context) - Hochberg - 1993
40   Cecil: A Sequencing Constraint Language for Automatic Static.. (context) - Olender, Osterweil - 1990
34   NetSTAT: A Network-based Intrusion Detection Approach - Vigna, Kemmerer - 1998
34   Synthesizing Fast Intrusion Prevention /Detection Systems fr.. - Sekar, Uppuluri - 1999
33   Regular expressions and state graphs for automata (context) - McNaughton, Yamada - 1960
31   Learning Program Behavior Profiles for Intrusion Detection - Ghosh, Schwartzbard et al. - 1999
28   Penetration State Transition Analysis:A Rule based Intrusion.. (context) - Porras, Kemmerer - 1992
25   Synchronous Programming of Reactive Systems: An Introduction.. (context) - Berry, Couronne et al. - 1987
21   Using Kernel Hypervisors to Secure Applications (context) - Mitchem, Lu et al. - 1997
19   A HighPerformance Network Intrusion Detection System - Sekar, Guang et al. - 1999
13   Department of Computer Science - Kumar, Detection et al. - 1995
11   On Preventing Intrusions by Process Behavior Monitoring - Sekar, Bowen et al. - 1999
10   MCF: a Malicious Code Filter (context) - Lo, Levitt et al. - 1995
10   Checking for Race Conditions in File Access (context) - Bishop, Dilger - 1996
9   Network Security via Reverse Engineering of TCP Code: Vulner.. - Guha, Mukherjee - 1996
6   Automated Intrusion Detection using NFR: Methods and Experie.. (context) - Lee, Park et al. - 1999
6   EMERALD: Event Monitoring Enabled Responses to Anomalous Liv.. (context) - Porras, Neumann - 1997
5   Symposium on Research Security and Privacy (context) - Heberlein, Security - 1990
2   Webster and M (context) - Graf, Lippmann et al.
2   Workshop on Compilers Support for Systems Software (context) - Chandra, McCann et al.
http://seclab.cs.ucdavis.edu/cidf



The graph only includes citing articles where the year of publication is known.

Documents on the same site (http://seclab.cs.sunysb.edu/ccs/publications.htm):   More
Toward Cost-Sensitive Modeling for Intrusion Detection .. - Lee, Fan, Miller.. (2000)   (Correct)
Resource-Constrained Model Checking of Recursive Programs - Basu, Kumar, Pokorny.. (2002)   (Correct)
User-Level Infrastructure for System Call Interposition: A.. - Jain, Sekar (1999)   (Correct)

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC