Steven A. Hofmeyr, Stephanie Forrest, Anil Somayaji  Home/Search
Context Related
| unm.edu/~steveah/jcsaccepted.ps Cached: PS.gz PS PDF This document uses CoBlitz to cache paper downloads. If your firewall is blocking outgoing connections to port 3125, you can use these links to download local copies.
Image Update HelpPS.gz PS PDF From: unm.edu/~steveah/ (more) (Enter author homepages) |
Rate this article:      (best)Comment on this article |
Abstract: A method is introducted for detecting intrusions at the level of privileged processes. Evidence is given that short sequences of system calls executed by running processes are a good discriminator between normal and abnormal operating characteristics of several common UNIX programs. Normal behavior is collected in two ways: Synthetically, by exercising as many normal modes of usage of a program as possible, and in a live user environment by tracing the actual execution of the program. In... (Update)
Cited by: More
The Work of Intrusion Detection: - Rethinking The Role (2004) (Correct)
Anomaly Detection Based on Unsupervised Niche Clustering.. - Leon, Nasraoui, Gomez (2004) (Correct)
Windows Performance Monitoring and Data Reduction.. - Knop, Paritosh.. (2001) (Correct)
Active bibliography (related documents): More All
2.1: Intrusion Detection using Sequences of System Calls - Hofmeyr, Forrest, Somayaji (1998) (Correct)
0.8: A Sense of Self for Unix Processes - Forrest, Hofmeyr, Somayaji.. (1996) (Correct)
0.4: Computer System Intrusion Detection: A Survey - Bechard (1999) (Correct)
Similar documents based on text: More All
0.5: Automated Response Using System-Call Delays - Somayaji, Forrest (2000) (Correct)
0.4: An Immunological Model of Distributed Detection and Its.. - Hofmeyr (1999) (Correct)
0.3: Computer Immunology - Forrest, Hofmeyr, Somayaji (1996) (Correct)
Related documents from co-citation: More All
26: A sense of self for unix processes - Forrest, Hofmeyr et al. - 1996
15: Detecting Intrusions Using System Calls: Alternative Data Models - Christina, Forrest et al. - 1999
13: Intrusion detection via static analysis - Wagner, Dean - 2001
BibTeX entry: (Update)
S. A. Hofmeyr, S. Forrest, and A. Somayaji. Intrusion detection using sequences of system calls. Journal of Computer Security, 6:151--180, 1998. http://citeseer.ist.psu.edu/hofmeyr98intrusion.html More
@article{ hofmeyr98intrusion,
author = "Steven A. Hofmeyr and Stephanie Forrest and Anil Somayaji",
title = "Intrusion Detection Using Sequences of System Calls",
journal = "Journal of Computer Security",
volume = "6",
number = "3",
pages = "151-180",
year = "1998",
url = "citeseer.ist.psu.edu/hofmeyr98intrusion.html" }
Citations (may not include all citations):546 An Introduction to the Bootstrap (context) - Efron, Tibshirani - 1993
244 Cryptography and Data Security (context) - Denning - 1992
142 A sense of self for unix processes - Forrest, Hofmeyr et al. - 1996
121 An intrusion detection model (context) - Denning - 1987
105 State transition analysis: A rule-based intrusion detection .. - Illgun, Kemmerer et al. - 1995
74 Computer immunology - Forrest, Hofmeyr et al. - 1997
68 A network security monitor (context) - Heberlein, Dias et al. - 1990
63 Next-generation intrusion detection expert system - Anderson, Frivold et al. - 1995
58 A pattern matching model for misuse intrusion detection - Kumar, Spafford - 1994
56 A real-time intrusion detection expert system (context) - Lunt, Tamaru et al. - 1992
50 The design and implementation of tripwire: A file system int.. - Kim, Spafford - 1994
46 The COPS security checker system - Farmer, Spafford - 1990
45 Building diverse computer systems - Forrest, Somayaji et al. - 1997
43 Nadir: An automated system for detecting network intrusion a.. (context) - Hochberg, Jackson et al. - 1993
42 A biologically inspired immune system for computers - Kephart - 1994
37 Defending a computer system using autonomous agents - Crosbie, Spafford - 1995
30 The architecture of a network level intrusion detection syst.. (context) - Heady, Luger et al. - 1990
25 Artificial intelligence and intrusion detection: Current and.. - Frank - 1994
25 A neural network approach towards intrusion detection (context) - Fox, Henning et al. - 1990
23 Detecting intruders in computer systems - Lunt - 1993
20 Principles of a computer immune system - Somayaji, Hofmeyr et al. - 1997
13 Security audit trail analysis using inductively generated pr.. (context) - Teng, Chen et al. - 1990
13 Department of Computer Sciences - Kumar, Detection et al. - 1995
7 Intrusion detection: Its role and validation (context) - Liepins, Vaccaro - 1992
6 Misuse detection tools (context) - Smaha, Winslow - 1994
6 Automated detection of vulnerabilities in priviledged progra.. (context) - Ko, Fink et al. - 1994
5 sendmail-6-dec (context) - -advisory- - 1994
4 Internet security monitor: An intrusion detection system for.. (context) - Heberlein, Mukherjee et al. - 1992
3 Countering abuse of name-based authentication - Schuba, Spafford - 1996
1 Imporving the security of your site by breaking into it (context) - Farmer, Venema - 1995
1 ftpd.vulnerability (context) - wuarchive, vulnerability et al. - 1993
The graph only includes citing articles where the year of publication is known.
Documents on the same site (http://www.cs.unm.edu/~steveah/): More
Intrusion Detection using Sequences of System Calls - Hofmeyr, Forrest, Somayaji (1998) (Correct)
A Sense of Self for Unix Processes - Forrest, Hofmeyr, Somayaji.. (1996) (Correct)
Computer Immunology - Forrest, Hofmeyr, Somayaji (1996) (Correct)
Online articles have much greater impact More about CiteSeer.IST Add search form to your site Submit documents Feedback
CiteSeer.IST - Copyright Penn State and NEC