Curtis Carver Jr, John M.D. Hill, John R. Surdu  Home/Search
Context Related
| usma.edu/marin/Wshop/Papers...TP1_1.pdf Cached: PS.gz PS PDF This document uses CoBlitz to cache paper downloads. If your firewall is blocking outgoing connections to port 3125, you can use these links to download local copies.
Image Update HelpPS.gz PS PDF From: usma.edu/ragsdale/secbib (more) (Enter author homepages) |
Rate this article:      (best)Comment on this article |
Abstract: This paper proposes a new methodology for adaptive, automated intrusion response (IR) using software agents. The majority of intrusion response systems (IRSs) react to attacks by generating reports or alarms. This introduces a window of vulnerability between when an intrusion is detected and when action is taken to defend against the attack. Research by Cohen indicates that the success of an attack is dependent on the time gap between detection and response. If skilled attackers are given ten... (Update)
Context of citations to this paper: More
...attack. The Analysis agent analyzes an incident until it is resolved and generates an abstract course of action to resolve the incident [26]. To generate this course of action, the Analysis agent invokes the Response Taxonomy agent to classify the attack and Policy...
.... intrusion response (IR) system based on work done by Carver, et al. who have examined an adaptive agent based approach for an IR system [1]. Such a system has one or more intrusion detection systems that identify intrusions. Separate modules classify the nature of the...
Cited by: More
WORM vs. WORM: Preliminary Study of an Active.. - Castañeda.. (2004) (Correct)
Unknown - Cognitive Assistant For (Correct)
Intrusion Detection: A Bibliography - Mé, Michel (2001) (Correct)
Similar documents (at the sentence level):
12.9%: Adaptation Techniques for Intrusion Detection and.. - Ragsdale, Carver.. (2000) (Correct)
Active bibliography (related documents): More All
0.0: Correlating Alerts Using Prerequisites of Intrusions - Ning, Reeves, Cui (2001) (Correct)
0.0: Intrusion Detection Systems: A Survey and Taxonomy - Axelsson (2000) (Correct)
0.0: Research in Intrusion-Detection Systems: A Survey - Axelsson (1998) (Correct)
Similar documents based on text: More All
0.7: EMERALD: Event Monitoring Enabling Responses to Anomalous.. - Porras, Neumann (1997) (Correct)
0.6: A Methodology to Support Anticipatory Planning - Hill, Surdu, Pooch (2000) (Correct)
0.5: Using In-Class Debates as a teaching tool - Alford, Surdu (2002) (Correct)
Related documents from co-citation: More All
3: Symantec Security Response (context) - Corp - 2004
3: Intrusion Detection Intercomponent Adaptive Negotiation - Feiertag, Benzinger et al. - 1999
3: An Intrusion Response Taxonomy and its Role in Automatic Intrusion Response (context) - Carver, Pooch - 2000
BibTeX entry: (Update)
C. A. Carver, J. M. D. Hill, J. R. Surdu, and U. W. Pooch, "A Methodology for using Intelligent Agents to provide Automated Intrusion Response," in Proceedings of the IEEE Systems, Man, and Cybernetics Information Assurance and Security Workshop, West Point, NY, June 6-7, 2000, 2000, pp. CD-ROM. http://citeseer.ist.psu.edu/carver00methodology.html More
@inproceedings{ carver00methodology,
author = "C. Carver and J. Hill and J. Surdu and U. Pooch",
title = "A Methodology for using Intelligent Agents to provide Automated Intrusion Response",
booktitle = "Proceedings of the IEEE Systems, Man, and Cybernetics Information Assurance and Security Workshop, West Point, NY, June 6-7, 2000",
year = "2000",
pages = "110-116",
url = "citeseer.ist.psu.edu/carver00methodology.html" }
Citations (may not include all citations):132 EMERALD: Event Monitoring Enabling Responses to Anomalous Li.. - Porras, Neumann - 1997
41 Experience with EMERALD to Date - Neumann, Porras - 1999 ACM DBLP
38 Cooperating Security Managers: A Peer-based Intrusion Detect.. (context) - White, Fisch et al. - 1996
19 How to Systematically Classify Computer Security Intrusions (context) - Lindqvist, Jonsson - 1997 ACM
2 Intrusion Damage Control and Assessment: A Taxonomy and Impl.. (context) - Fisch - 1996
1 Simulating Cyber Attacks, Defenses, and Consequences (context) - Cohen - 1999
1 CA: AAAI Press (context) - Bradshaw, Agents et al. - 1997
1 Fuzzy Logic: Intelligent (context) - Yen, Lengari - 1999
1 Results of the Distributed-Systems Intruder Tools Workshop (context) - Center - 1999
Documents on the same site (http://www.ai.usma.edu/ragsdale/secbib.htm): More
Design and Implementation of a Scalable Intrusion Detection.. - Jou Gong Sargor (2000) (Correct)
A Quantitative Model of the Security Intrusion Process Based.. - Jonsson, al. (1997) (Correct)
JiNao: Design and Implementation of a Scalable.. - Wu, Chang, Jou.. (Correct)
Online articles have much greater impact More about CiteSeer.IST Add search form to your site Submit documents Feedback
CiteSeer.IST - Copyright Penn State and NEC