Somayaji A, Hofmeyr S A, Forrest S. Principles of a computer immune system In New Security Paradigms Workshop 97, in press.  Home/Search   Document Not in Database   Summary   Related Articles

....is almost identical for both databases. This suggests that intrusion signatures could be encoded in sequences of system calls, i.e. the system call signature could be the basis of a misuse IDS, or an IDS that does both anomaly and misuse detection (for a further exploration of these ideas see [38]) 5.2 How much Normal is enough This section addresses questions 2 and 3 posed above: How much normal is enough And, are intrusions still detectable as the size of normal increases In our experiments we used the lpr data we collected in the real environments at MIT and UNM. In both cases, we ....

....If this is the case, it may well be that probabilities are necessary in less structured domains, such as user behavior. In earlier papers, we have advocated a comprehensive approach to computer security based on a collection of organizing principles derived from our study of the immune system [38]. The immune system perspective has certainly influenced many of our design decisions, but in this paper we are emphasizing concrete computational mechanisms and largely ignoring the immune system connection. Details of how our approach to IDS fits into the overall immune system vision are given ....

Somayaji A, Hofmeyr S A, Forrest S. Principles of a computer immune system In New Security Paradigms Workshop 97, in press.

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC