See this document in CiteSeerX!

NSTAT: A Model-based Real-time Network Intrusion Detection System (1997)  (Make Corrections)  (14 citations)
Richard A. Kemmerer



  Home/Search   Context   Related

 
View or download:
ucsb.edu/TRs/techreports...TRCS9718.ps
ucsb.edu/TRs/Docs/TRCS9718.ps
Cached:  PS.gz  PS  PDF   Image  Update  Help

From:  ucsb.edu/~vigna/STAT/documents (more)
(Enter author homepages)

Rate this article: (best)
  Comment on this article  
(Enter summary)

Abstract: this report is to provide a single STAT process with a single, chronological audit trail. A client/server approach is currently being built, where the client side has two threads: a producer that reads and filters the audit trail and a consumer that sends it to the server. The server side merges the filtered information from the various clients and performs the analysis. This distributed approach is known as NSTAT. STAT is designed to detect the same computer penetrations targeted by currently... (Update)

Context of citations to this paper:   More

...the systems. Snapp91] argues that the NID problem exists in both detecting the intrusion and knowing on whom to focus mitigation; [Kemmerer97] claims that the NID problem is only a problem for the mitigation aspect. No matter how many times a human logs in on different...

...which forward data that might be part of a larger attack scenario to upper level sensors. An example of a centralized system is NSTAT [6], while Emerald [8] or AAFID [2, 1] follow a hierarchical approach. For our theoretical discussion, we assume a network with n hosts...

Cited by:   More
A Multiagent Approach to Outbound Intrusion Detection - Mandujano (2004)   (Correct)
Distributed Intrusion Detection Systems: A Computational.. - Ajith Abraham And (2005)   (Correct)
Using Internal Sensors For Computer Intrusion Detection - Zamboni (2001)   (Correct)

Similar documents (at the sentence level):
28.6%:   IEEE TRANSACTIONS ON SOFTWARE ENGINEERING, VOL. XX.. - Intrusion Detection..   (Correct)
27.5%:   State Transition Analysis: A Rule-Based Intrusion Detection Approach - Ilgun (1995)   (Correct)

Active bibliography (related documents):   More   All
0.5:   Ustat : A Real-time Intrusion Detection System for Unix - Ilgun (1992)   (Correct)
0.3:   Automated Audit Trail Analysis and Intrusion Detection: A Survey - Lunt (1988)   (Correct)
0.2:   Acquiring Consistent Knowledge - Santos, Jr., Banks (1996)   (Correct)

Similar documents based on text:   More   All
0.5:   Ms Poll, Sirn. - Tr Tp Tr   (Correct)
0.1:   ASAX: Software Architecture and Rule-Based Language .. - Habra, Le.. (1992)   (Correct)
0.1:   Appendix D Acceptable Bullets For Handloading - All Jacket Materials   (Correct)

Related documents from co-citation:   More   All
12:   USTAT: A Real-Time Intrusion Detection System for UNIX - Ilgun - 1992
10:   EMERALD: Event Monitoring Enabling Responses to Anomalous Live Disturbances - Porras, Neumann - 1997
8:   NetSTAT: A Networkbased Intrusion Detection System - Vigna, Kemmerer - 1999

BibTeX entry:   (Update)

R.A. Kemmerer. NSTAT: A Model-based Real-time Network Intrusion Detection System. Technical Report TRCS-97-18, Department of Computer Science, UC Santa Barbara, November 1997. http://citeseer.ist.psu.edu/kemmerer97nstat.html   More

@techreport{ kemmerer98nstat,
    author = "Richard A. Kemmerer",
    title = "{NSTAT}: {A} Model-based Real-time Network Intrusion Detection System",
    number = "TRCS97-18",
    month = "17,",
    year = "1998",
    url = "citeseer.ist.psu.edu/kemmerer97nstat.html" }
Citations (may not include all citations):
132   EMERALD: Event Monitoring Enabling Responses to Anomalous Li.. - Porras, Neumann - 1997
105   State Transition Analysis: A Rule-Based Intrusion Detection .. - Ilgun, Kemmerer et al. - 1995
79   Computer Security Threat Monitoring and Surveillance (context) - Anderson - 1980
59   USTAT: A Real-time Intrusion Detection System for UNIX - Ilgun - 1992
59   USTAT: A Real-time Intrusion Detection System for UNIX - Ilgun - 1993
31   Model-based Intrusion Detection (context) - Garvey, Lunt - 1991
19   Knowledge-Based Intrusion Detection (context) - Lunt, Jagannathan et al. - 1989
5   Building Expert Systems: A Tutorial (context) - Martin, Oxman - 1988
3   Analysis of Computer System Audit Trails - Intrusion Classif.. (context) - Halme, Lunt et al. - 1985
3   SunOS Release (context) - Incorporated - 1991



The graph only includes citing articles where the year of publication is known.

Documents on the same site (http://www.cs.ucsb.edu/~vigna/STAT/documents.html):   More
State Transition Analysis: A Rule-Based Intrusion Detection Approach - Ilgun (1995)   (Correct)
NetSTAT: A Network-based Intrusion Detection Approach - Vigna (1998)   (Correct)
NetSTAT: A Network-based Intrusion Detection System - Vigna (1999)   (Correct)

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC