Koral Ilgun. USTAT: A real-time intrusion detection system for UNIX. In Proceedings of the 1993.  Home/Search   Document Details and Download   Summary   Related Articles   Check

....because they have solved analog problems in domains as computational biology and information retrieval. In intrusion detection, pattern matching algorithms have been proposed as search engines in two different intrusion detection models. One is based in the concept of state transition analysis [10, 13] and the the other uses the computer immunology approach proposed in [9] We give an example to illustrate how the pattern matching algorithms presented below can be used to solve an intrusion detection problem. Auditable events in the target system (such as TCP IP packages in a network or ....

K. Ilgun. USTAT: A real-time intrusion detection system for UNIX. Master's thesis, Computer Science Dept., University of California, Santa Barbara, July 1992.

....data structures that would be hard although probably not impossible to code in Russel. Our high level language is, as announced, a temporal language, which seems to make it quite different from the state transition diagrams of STAT (State Transition Analysis [17] and its variants USTAT [9], NetSTAT [25] and STATL [6] and also from the the colored Petri approach advocated in [10] and used in IDIOT [4] However, the particular brand of temporal logic that we shall use in Section 4, and whose modal operators were inspired by Wolper s extended linear time operators [26] are in fact ....

K. Ilgun. USTAT: A real-time intrusion detection system for UNIX. In IEEE Symposium on Research on Security and Privacy, 1993.

....illustration of the implementation of the state based approach [Porras92] USTAT is tailored to the UNIX Figure 3. Generic State Transition Diagram Action Compromised State Transition State Action(s) Initial State Action Transition State Intrusion Detection 17 02 09 00 environment [Ilgun93]. Each known penetration, or intrusion scenario, is represented in the form of a state transition diagram. Some action, for example UNIX system routines that change system state, are the transitions from one state to the next. USTAT processes audit records from the particular UNIX system on which ....

Ilgun, K. "USTAT: A Real-Time Intrusion Detection System for UNIX." Proceedings of the IEEE Symposium on Research in Security and Privacy, May 1993.

....because they have solved analog problems in domains as computational biology and information retrieval. In intrusion detection, pattern matching algorithms have been proposed as search engines in two different intrusion detection models. One is based in the concept of state transition analysis [11, 14] and the the other uses the computer immunology approach proposed in [9] We give an example to illustrate how the pattern Work supported by CONACyT grant # 122688. y Work developed in part while the author was at postdoctoral stay at Institut Gaspard Monge, Univ. de Marne la Vall ee, France. ....

K. Ilgun. USTAT: A real-time intrusion detection system for UNIX. Master's thesis, Computer Science Dept., University of California, Santa Barbara, July 1992.

....detection. The first implementation of the host based tool, which is called USTAT, used as input the audit records produced by Sun Microsystems Basic Security Module (BSM) 32] USTAT clearly demonstrated the value of the STAT approach for intrusion detection in the UNIX operating system [13, 14, 26]. However, because the original USTAT prototype was developed in an ad hoc way, a number of characteristics of this first prototype were difficult to modify or to extend to match new environments (e.g. Windows NT) The state transition analysis technique was also applied to networks. The ....

K. Ilgun. USTAT: A Real-time Intrusion Detection System for UNIX. In Proceedings of the IEEE Symposium on Research on Security and Privacy, Oakland, CA, May 1993.

....detection. The first implementation of the host based tool, which is called USTAT, used as input the audit records produced by Sun Microsystems Basic Security Module (BSM) 32] USTAT clearly demonstrated the value of the STAT approach for intrusion detection in the UNIX operating system [13, 14, 26]. However, because the original USTAT prototype was developed in an ad hoc way, a number of characteristics of this first prototype were difficult to modify or to extend to match new environments (e.g. Windows NT) The state transition analysis technique was also applied to networks. The ....

K. Ilgun. USTAT: A Real-time Intrusion Detection System for UNIX. Master's thesis, Computer Science Department, University of California, Santa Barbara, July 1992.

....of California, Santa Barbara, CA 93106 USA; emaih kemm cs.ucsb.edu. P.A. Porras is with The Aerospace Corporation, P.O. Box 92957, Mail Stop: M1 055, Los Angeles, CA 90009 2957, USA; emaih porras aero.org This paper is an extended version of two previous conference papers by the same authors [15,28]. due to the enormous quantity of data collected. In order to provide enough information to establish accountability and enable damage assessment, the audit collection mechanisms must record the occurrences of all security relevant events. 1 Because of the large volume of data generated, manual ....

K. Ilgun, "USTAT: A Real-Time Intrusion Detection System for UNIX," Proceedings of the IEEE Symposium on Research in Security and Privacy, Oakland, CA, pp. 16-28, May 1993.

No context found.

K. Ilgun, "USTAT: A Real-Time Intrusion Detection System for UNIX," Masters Thesis, Computer Science Department, University of California, Santa Barbara, July 1992.

No context found.

Koral Ilgun. USTAT: A real-time intrusion detection system for UNIX. In Proceedings of the 1993.

No context found.

Ilgun, K. USTAT: A Real-Time Intrusion Detection System for UNIX. IEEE Symposium on Security and Privacy, pp. 16--28, Oakland, CA, May 1993.

No context found.

K. Ilgun, "USTAT: A Real-Time Intrusion Detection System for UNIX," Proc. IEEE Symp. Research on Security and Privacy, May 1993.

No context found.

Ilgun, K. USTAT: A Real-Time Intrusion Detection System for UNIX, Master Thesis, University of California, Santa Barbara, 1992. 21

No context found.

K. Ilgun. USTAT: A Real-Time Intrusion Detection System for UNIX. Master Thesis, University of California, Santa Barbara, November 1992.

No context found.

K. Ilgun. USTAT: A Real-time Intrusion Detection System for UNIX. In Proceedings of the IEEE Symposium on Research on Security and Privacy, Oakland, CA, May 1993.

No context found.

Koral Ilgun. USTAT: A Real-Time Intrusion Detection System for UNIX. In Proceedings of the 1993 IEEE Symposium on Research in Security and Privacy, Oakland, CA, May 1993.

No context found.

Koral Ilgun. USTAT: A Real-Time Intrusion Detection System for UNIX. Master 's thesis, Department of Computer Science, University of California at Santa Barbara, July 1992.

No context found.

K. Ilgun. USTAT: A Real-time Intrusion Detection System for UNIX. In Proceedings of the IEEE Symposium on Research on Security and Privacy, Oakland, CA, May 1993. 40

No context found.

K. Ilgun. USTAT: A Real-time Intrusion Detection System for UNIX. Master's thesis, Computer Science Department, University of California, Santa Barbara, July 1992.

No context found.

Koral Ilgun. USTAT: A real-time intrusion detection system for Unix. Master's thesis, University of California at Santa Barbara, November 1992.

No context found.

K Ilgun, "USTAT: A Real-time Intrusion Detection System for UNIX," Proceedings of 1993 IEEE Symposium on Research in Security and Privacy pp 16--28

No context found.

K. Ilgun. USTAT: A real-time intrusion detection system for UNIX. In Proceedings of the 1993.

No context found.

K. Ilgun. USTAT: A Real-time Intrusion Detection System for UNIX. In Proceedings of the IEEE Symposium on Research on Security and Privacy, Oakland, CA, May 1993.

No context found.

Ilgun, K. (1993). USTAT : A Real-Time Intrusion Detection System for UNIX. In Proceedings of the IEEE Symposium on Security and Privacy, pages 1629.

No context found.

K. Ilgun. USTAT: A real-time intrusion detection system for UNIX. In Proceedings of IEEE Symposium on Security and Privacy, pages 16--28, Oakland, CA, May 1993.

No context found.

K. Ilgun. USTAT: A real-time intrusion detection system for UNIX. In Proceedings of IEEE Symposium on Security and Privacy, pages 16--28, Oakland, CA, May 1993.

First 50 documents  Next 50

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC