Ross Anderson, Abida Khattak  Home/Search
Context Related
| cl.cam.ac.uk/ftp/users/rja...raid.ps.gz Cached: PS.gz PS PDF This document uses CoBlitz to cache paper downloads. If your firewall is blocking outgoing connections to port 3125, you can use these links to download local copies.
Image Update HelpPS.gz PS PDF From: cl.cam.ac.uk/~rja14/ (more) (Enter author homepages) |
Rate this article:      (best)Comment on this article |
Abstract: Intrusion detection is a broad problem, and we need a greater range of tools than is currently available. In this article, we report a new approach. We have applied information retrieval techniques to index audit trails. These indexes can be extremely efficient at detecting attacks whose signature is an unusual combination of events, and they may consume only a very small additional amount of storage. This approach allows the intrusion detection community to adopt a wide range of techniques... (Update)
Context of citations to this paper: More
...in non network environments: Examples include the use of IDS techniques to monitor telephone traffic and credit card transactions. [Anderson98] . Adapting IDS to new technologies: New networking protocols and products are continually being developed, affecting the functioning...
Cited by: More
Fusion and Filtering in Distributed Intrusion Detection.. - Barford, Jha, Yegneswara (2004) (Correct)
On the Design and Use of Internet Sinks for Network.. - Yegneswaran, Barford.. (2004) (Correct)
Global Intrusion Detection in the DOMINO Overlay System - Yegneswaran, Barford, Jha (2004) (Correct)
Active bibliography (related documents): More All
3.4: Techniques for Intrusion Detection - Ross Anderson Abida (Correct)
0.3: Classification And Detection Of Computer Intrusions - Kumar (1995) (Correct)
0.2: Insertion, Evasion, and Denial of Service: Eluding Network.. - Ptacek, Newsham (1998) (Correct)
Similar documents based on text: More All
0.1: Paper No: 991438 - Preprint Duplication Of (Correct)
0.1: PLANHOV: A Case-Based Reasoning Planning Tool for.. - Khattak (Correct)
0.1: Paper No: 991439 - Preprint Duplication Of (Correct)
Related documents from co-citation: More All
5: Bro: A System for Detecting Network Intruders in Real-Time - Paxson - 1998
4: Adaptive Real-Time Anomaly Detection Using Inductively Generated Sequential Patt.. (context) - Teng, Chen et al. - 1990
4: An Architecture for Intrusion Detection using Autonomous Agents - Jai, Garcia-Fernandez et al. - 1998
BibTeX entry: (Update)
Anderson, R. and Khattak, A. (1998). The Use of Information Retrieval Techniques for Intrusion Detection. Web proceedings of the First International Workshop on Recent Advances in Intrusion Detection (RAID'98), http://www.raid-symposium.org/raid98. 3 http://citeseer.ist.psu.edu/anderson97use.html More
@inproceedings{ anderson98use,
author = "R. Anderson and A. Khattak",
title = "The Use of Information Retrieval Techniques for Intrusion Detection",
booktitle = "First International Workshop on Recent Advances in Intrusion Detection (RAID'98)",
text = "Anderson, R. and Khattak, A. (1998). The Use of Information Retrieval Techniques
for Intrusion Detection. Web proceedings of the First International Workshop
on Recent Advances in Intrusion Detection (RAID'98), http://www.raid-symposium.org/raid98.
3",
year = "1998",
url = "citeseer.ist.psu.edu/anderson97use.html" }
Citations (may not include all citations):173 A Comparison of Commercial and Military Computer Security Po.. (context) - Clark, Wilson - 1987
142 A Sense of Self for Unix Processes - Forrest, Hofmeyr et al. - 1996
128 Why Cryptosystems Fail - Anderson - 1994
118 Glimpse: A Tool to Search Through Entire File Systems - Manber, Wu - 1993
105 State Transition analysis: A Rule-Based Intrusion Detection .. - Ilgun, Kemmerer et al. - 1995
84 Data Mining Approaches for Intrusion Detection - Lee, Stolfo
82 Information Retrieval Data Structures & Algorithms (context) - Frakes, Baeza-Yates - 1992
74 Self-Nonself Discrimination in a Computer - Forrest, Perelson et al. - 1994
59 USTAT: A Real-time Intrusion Detection System for UNIX - Ilgun - 1993
43 NADIR: An Automated System for Detecting Network Intrusion a.. (context) - Hochberg, Jackson et al.
42 Readings in Information Retrieval (context) - Sparck-Jones, Willett - 1997
41 Expert System in Intrusion Detection: A Case Study (context) - Sebring, Shellhouse et al. - 1988
31 Detection of Anomalous Computer Session Activity (context) - Vaccaro, Liepins - 1989
28 Penetration State Transition Analysis: A Rule-Based Intrusio.. (context) - Porras, Kemmerer - 1992
20 A Methodology for Testing Intrusion Detection Systems - Puketza, Zhang et al. - 1996
5 Codes, Keys and Conflicts: Issues in US Crypto Policy (context) - Landau, Kent et al. - 1994
5 The SRI Statistical Anomaly Detector (context) - Javitz, Valdes - 1991
3 Available by Anonymous ftp from cert (context) - Advisories
2 Intelligent Fraud Detection Systems --- Benefits and techniq.. (context) - Goonatilake
2 The Prevention of Cheque and Credit Card Frauds (context) - Levi, Bissel et al. - 1991
2 A Biologically Inspired Immune System for Computers (context) - Kephardt - 1994
2 Lawrence Livermore National Laboratory (context) - Technical, Intrusion et al. - 1996
2 Adaptive Real-Time Anamoly Tetection Using Inductively Gener.. (context) - Chen, Lu et al. - 1990
1 Using Intelligent Software in Telecomms Fraud Detection and .. (context) - Ryman-Tubb
The graph only includes citing articles where the year of publication is known.
Documents on the same site (http://www.cl.cam.ac.uk/~rja14/): More
Robustness Principles for Public Key Protocols - Anderson, Needham (1995) (Correct)
Murphy's Law, the Fitness of Evolving Species, and the.. - Brady, Anderson, Ball (1999) (Correct)
A New Family of Authentication Protocols - Anderson, Bergadano, Crispo.. (1998) (Correct)
Online articles have much greater impact More about CiteSeer.IST Add search form to your site Submit documents Feedback
CiteSeer.IST - Copyright Penn State and NEC