Christopher Kruegel, Thomas Toth  Home/Search
Context
Related
| auto.tuwien.ac.at/~chris/r...2003_03.ps Cached: PS.gz PS PDF This document uses CoBlitz to cache paper downloads. If your firewall is blocking outgoing connections to port 3125, you can use these links to download local copies.
Image Update HelpPS.gz PS PDF From: auto.tuwien.ac.at/...publications (more) (Enter author homepages) |
Rate this article:      (best)Comment on this article |
Abstract: Most deployed intrusion detection systems (IDSs) follow a signature-based approach where attacks are identi ed by matching each input event against prede ned signatures that model malicious activity. (Update)
Active bibliography (related documents): More All
1.1: Using Decision Trees to Improve Signature-Based Intrusion.. - Kruegel, Toth (2003) (Correct)
0.2: Algorithms and Complexity for Annotated Sequence Analysis - Evans (1999) (Correct)
0.2: Optimization of Sequence Queries in Database Systems - Sadric (2001) (Correct)
Similar documents based on text:
3.0: Unknown - (Correct)
BibTeX entry: (Update)
@misc{ kruegel-using,
author = "Christopher Kruegel and Thomas Toth",
title = "Using Decision Trees to Improve Signature-Based Intrusion Detection",
url = "citeseer.ist.psu.edu/kruegel03using.html" }
Citations (may not include all citations):1359 Induction of decision trees (context) - Quinlan - 1986
140 Snort - Lightweight Intrusion Detection for Networks (context) - Roesch - 1999
70 A Data Mining Framework for Building Intrusion Detection Mod.. - Lee, Stolfo et al. - 1999
65 Bro: A system for detecting network intruders in real-time - Paxson - 1998
36 Discovering rules by induction from large collections of exa.. (context) - Quinlan - 1979
32 STATL: An Attack Language for State-based Intrusion Detectio.. - Eckmann, Vigna et al. - 2000
29 Ecient string matching: An aid to bibliographic search (context) - Aho, Corasick - 1975
22 DARPA Intrusion Detection Evaluation (context) - Labs - 1999
19 The STAT Tool Suite - Vigna, Eckmann et al. - 2000
12 An analysis of fast string matching applied to contentbased .. (context) - Fisk, Varghese - 2001
11 Towards Faster String Matching for Intrusion Detection or Ex.. (context) - Coit, Staniford et al. - 2001
9 Design and Performance of the OpenBSD Stateful Packet Filter (context) - Hartmeier - 2002
5 Communications of the Association for Computing Machinery (context) - Moore, Boyer et al. - 1977
2 comwarppublicccpd sqswsqidszindex (context) - formerly, www et al. - 2002
http://www.snort.org
www.infosys.tuwien.ac.at/snort-ng
http://www.sourcefire.com/technology/whitepapers
http://swatch.sourceforge.net
http://www.iss.net/products_services/enterprise_protection
Documents on the same site (http://www.auto.tuwien.ac.at/~chris/research/publications.html): More
Protecting Users against Phishing Attacks - Kirda, Kruegel (2005) (Correct)
Connection-History Based Anomaly Detection - Toth, Krügel (2002) (Correct)
Noxes: A Client-Side Solution for Mitigating.. - Kirda, Kruegel.. (2006) (Correct)
Online articles have much greater impact More about CiteSeer.IST Add search form to your site Submit documents Feedback
CiteSeer.IST - Copyright Penn State and NEC