Forrest, Stephanie, Steven A. Hofmeyr, and Anil Somayaji. 1997.  Home/Search   Document Not in Database   Summary   ACM   TOC   Related Articles   Check

....the training of the neural network gives an adapted convolution filter as well. There are many more examples, but a complete reference would go beyound the scope of this paper. To regard for the upcoming of new algorithm families within the field of soft computing, as immune based algorithms [3] [4] [5] 6] or autopoietic processing [7] 8] it has to be noted that such approaches refer to non static objects by their very nature. As an example, the animal immune system is basically monitoring processes and not objects. Also, a genetic algorithm emulates the fate of a population of ....

Stephanie Forrest, Steven A. Hofmeyr, and Anil Somayaji. Computer immunology. Communications of the ACM, 40(10):88--96, 1997.

....complex, stateful analysis of this information. 1. 1 Related work The basic model for an intrusion detection system was introduced by Denning in [9] Much work has grown around this model, and research in intrusion detection has covered network based intrusions [14, 37] immunology based models [12], state machine models [22] and statistical analysis [19] The approach we detail in this paper for detecting system misuse leverages some of the work performed by these authors; our core engine performs a state based analysis of audit data. Analysis of the requirements for audit data content for ....

Stephanie Forrest, Steven A. Hofmeyr, and Anil Somayaji. Computer Immunology. Communications of the ACM, 40(10):88--96, October 1997.

....system that requires communication between its components is less robust than one that does not require communication. In this model, a system is considered robust if it does not produce false positives and does not completely fail to detect intrusions. This model builds upon previous work [18, 19], and although its demonstrated application uses a speci c type of event for intrusion detection, in general it can be applied to sequences of any type of events. 4 Thesis proposal I propose to work on determining the validity of the following two thesis hypotheses: 1. It is possible to ....

Stephanie Forrest, Steven A. Hofmeyr, and Anil Somayaji. Computer Immunology. Communications of the ACM, 40(10):88-96, October 1997. ISSN 0001-0782. URL http://www.acm.org/pubs/citations/ journals/cacm/1997-40-10/p88-forrest/.

....that it uses multiple monitors and arti cial intelligence algorithms to determine the severity of events. DIDS di ers from our system in that the intelligence is purely centralized, and DIDS does not make use of any agent technology. The Computer Immunology project at the University of New Mexico [8] explored designs of intrusion detection systems based on animal immune systems. One portion of the project developed a sense of self for security related computer programs by creating a database of normal system call traces from instances of execution of the programs [9] This sense of self can ....

Stephanie Forrest, Steven A. Hofmeyr, and Anil Somayaji. Computer immunology. Communications of the ACM, 40(10):8896, October 1997.

....the use of agents in intrusion detection systems. The Computer Immunology Project, Java Agents for Meta Learning (JAM) and Autonomous Agents for Intrusion Detection (AAFID) projects each examined the problem in di erent ways. The Computer Immunology Project at the University of New Mexico [23][4][5] explored designs of intrusion detection systems based on ideas gleaned by examining animal immune systems. Small, individual agents would roam a distributed system, identify intrusions, and resolve the intrusions. One portion of the project developed a sense of self for security related ....

Stephanie Forrest, Steven A. Hofmeyr, and Anil Somayaji. Computer immunology. Communications of the ACM, 40(10):8896, October 1997.

....or recon gured, and the intrusion detection mechanisms that are used locally by each CSM. The idea of employing widely distributed elements to perform intrusion detection, by emulating to some extent the biological immune systems, and by giving the system a sense of self , has also been explored [8]. A distributed sensor system that performs central processing and that can be organized in a hierarchical fashion is described in [12] This paper proposes a system that is almost identical to the original design of our system as done in [3] It appeared several years later in the same ....

Stephanie Forrest, Steven A. Hofmeyr, and Anil Somayaji. Computer Immunology. Communications of the ACM, 40(10):88-96, October 1997.

.... mandatory access control, in which programs, people and data are assigned classification levels, and information can not flow from higher to lower levels, 2) security automata [25] in which a program s current allowed actions depend on its past resource usage, 11 and (3) computer immunology [7], in which a program is considered malicious if its current pattern of resource usage does not match its normal pattern. It is an open research question to decide which, if any, of these models is most appropriate for mobile agent systems. 4.4 Examples Figures 8 through 11 show two sample agents ....

Stephanie Forrest, Steven A. Hofmeyr, and Anil Somayaji. Computer immunology. Communications of the ACM, 40(10):88--96, October 1997.

.... access control, in which programs, people and data are assigned classification levels, and information can not flow from higher to lower levels, 2) security automata [Sch97a] in which a program s current allowed actions depend on its past resource usage, 10 and (3) computer immunology [FHS97, Gre97b] in which a program is considered malicious if its current pattern of resource usage does not match its normal pattern. Although none of these models are incompatible with Agent Tcl s current architecture, architectural extensions would be needed for all three. As it becomes clearer ....

Stephanie Forrest, Steven A. Hofmeyr, and Anil Somayaji. Computer immunology. Communications of the ACM, 40(10):88--96, October 1997.

No context found.

Forrest, Stephanie, Steven A. Hofmeyr, and Anil Somayaji. 1997.

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC