W. Hunteman. Automated information system|(ais) alarm system. In Proceedings of the Twentieth National Information Systems Security Conference, pages 394-405. The National Institute of Standards and Technology and the National Computer Security Center, 1997.  Home/Search   Document Not in Database   Summary   Related Articles   Check

....where many attacks are scripted and rules can be (relatively) easily derived from packet analysis or captured attack scripts [13, 14] More often rule bases form a single component of an anomaly detection system. Systems such as (N)IDES [80, 81, 34, 82] and its successor EMERALD [12] AIS [83], MIDAS [84] and NSM [85] all employ rule bases as higher level decision procedures in a hierarchical detection system. These procedures are used as discriminators to prune out spurious hits from lower level sensors and anomaly detectors which may be statistical in nature. Even for such systems, ....

W. Hunteman. Automated information system|(ais) alarm system. In Proceedings of the Twentieth National Information Systems Security Conference, pages 394-405. The National Institute of Standards and Technology and the National Computer Security Center, 1997.

.... to perform intrusion detection, by emulating to some extent the biological immune systems, and by giving the system a sense of self , has also been explored [8] A distributed sensor system that performs central processing and that can be organized in a hierarchical fashion is described in [12]. This paper proposes a system that is almost identical to the original design of our system as done in [3] It appeared several years later in the same conference, but [12] has little in the way of detail, and no citations to related work that would enable us to determine how their work may ....

.... sensor system that performs central processing and that can be organized in a hierarchical fashion is described in [12] This paper proposes a system that is almost identical to the original design of our system as done in [3] It appeared several years later in the same conference, but [12] has little in the way of detail, and no citations to related work that would enable us to determine how their work may relate to ours. The EMERALD project [19] proposes a distributed architecture for intrusion detection that employs entities called service monitors which are deployed to hosts ....

Willian Hunteman. Automated information system | (ais) alarm system. In Proceedings of the 20th National Information Systems Security Conference. National Institute of Standards and Technology, October 1997.

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC