Koral Ilgun  Home/Search
Context Related
| ucsb.edu/~vigna/STAT/d...statTSE.ps.gz usma.edu/ragsdale/refs/statTSE.pdf ucsb.edu/~rsg/pub/..._porras_stat.ps.gz Cached: PS.gz PS PDF This document uses CoBlitz to cache paper downloads. If your firewall is blocking outgoing connections to port 3125, you can use these links to download local copies.
Image Update HelpPS.gz PS PDF From: ucsb.edu/~vigna/STAT/documents (more) (Enter author homepages) |
Rate this article:      (best)Comment on this article |
Abstract: This paper presents a new approach to representing and detecting computer penetrations in real-time. The approach, called state transition analysis, models penetrations as a series of state changes that lead from an initial secure state to a target compromised state. State transition diagrams, the graphical representation of penetrations, identify precisely the requirements for and the compromise of a penetration and present only the critical events that must occur for the successful completion ... (Update)
Cited by: More
Measuring a System's Attack Surface - Pratyusa Manadhata Pratyus (2004) (Correct)
Techniques and Tools for Analyzing Intrusion Alerts - Ning, Cui, Reeves, Xu (2004) (Correct)
Analyzing Intensive Intrusion Alerts Via Correlation - Peng Ning Yun (2002) (Correct)
Similar documents (at the sentence level):
10.0%: NSTAT: A Model-based Real-time Network Intrusion Detection System - Kemmerer (1997) (Correct)
Active bibliography (related documents): More All
0.3: Predictive Application-Performance Modeling in a.. - Kapadia, Fortes, Brodley (1999) (Correct)
0.3: An Application of Pattern Matching in Intrusion Detection - Kumar, Spafford (1994) (Correct)
0.2: IEEE TRANSACTIONS ON SOFTWARE ENGINEERING, VOL. XX.. - Intrusion Detection.. (Correct)
Similar documents based on text: More All
0.3: Ustat : A Real-time Intrusion Detection System for Unix - Ilgun (1992) (Correct)
0.3: Sensor Families For Intrusion Detection Infrastructures - Kemmerer, Vigna (2004) (Correct)
0.3: Unknown - Security Testing Of (2000) (Correct)
Related documents from co-citation: More All
32: EMERALD: Event Monitoring Enabling Responses to Anomalous Live Disturbances - Porras, Neumann - 1997
31: Network Intrusion Detection (context) - Mukherjee, Heberlein et al. - 1994
31: USTAT: A Real-Time Intrusion Detection System for UNIX - Ilgun - 1992
BibTeX entry: (Update)
K. Ilgun, R. Kemmerer, and P. Porras. State Transition Analysis: A RuleBased Intrusion Detection System. IEEE Transactions on Software Engineering, 21(3), Mar. 1995. http://citeseer.ist.psu.edu/ilgun95state.html More
@article{ ilgun95state,
author = "Koral Ilgun and Richard A. Kemmerer and Phillip A. Porras",
title = "State Transition Analysis: A Rule-Based Intrusion Detection Approach",
journal = "Software Engineering",
volume = "21",
number = "3",
pages = "181-199",
year = "1995",
url = "citeseer.ist.psu.edu/ilgun95state.html" }
Citations (may not include all citations):79 Computer Security Threat Monitoring and Surveillance (context) - Anderson - 1980
28 Adaptive Real-Time Anomaly Detection Using Inductively Gener.. (context) - Chen, Lu et al. - 1990
4 Security Problem with the UNIX Operating System (context) - Bishop
3 Purdue University (context) - Computer - 1982
The graph only includes citing articles where the year of publication is known.
Documents on the same site (http://www.cs.ucsb.edu/~vigna/STAT/documents.html): More
NetSTAT: A Network-based Intrusion Detection Approach - Vigna (1998) (Correct)
NSTAT: A Model-based Real-time Network Intrusion Detection System - Kemmerer (1997) (Correct)
NetSTAT: A Network-based Intrusion Detection System - Vigna (1999) (Correct)
Online articles have much greater impact More about CiteSeer.IST Add search form to your site Submit documents Feedback
CiteSeer.IST - Copyright Penn State and NEC