Gordon Thomas Rohrmair, Gavin Lowe  Home/Search
Context Related
Links: DBLP | web.comlab.ox.ac.uk/oucl/work/...IDS.ps Cached: PS.gz PS PDF This document uses CoBlitz to cache paper downloads. If your firewall is blocking outgoing connections to port 3125, you can use these links to download local copies.
Image Update HelpPS.gz PS PDF Problem Downloading? From: web.comlab.ox.ac.uk/oucl/...index (more) (Enter author homepages) |
Rate this article:      (best)Comment on this article |
Abstract: In this paper we will demonstrate how one can model and analyse Intrusion Detection Systems (IDSs) and their environment using the process algebra Communicating Sequential Processes (CSP) [11, 21] and its model checker FDR [9]. An Intrusion Detection System (IDS) is a system that detects abuses, misuses and unauthorised uses in a network. We show that this analysis can be used to discover two attack strategies that can be used to blind every Intrusion Detection System (IDS), even a... (Update)
Context of citations to this paper: More
...with a slightly di#erent focus, combined with results taken from the area of data independence. 1 Introduction In a previous paper [RL02], we showed how to use the process algebra Communicating Sequential Processes (CSP) Ros97] to discover de synchronisation attacks on...
...with a slightly di erent focus, combined with results taken from the area of data independence. 1 Introduction In a previous paper [RL02], we showed how to use the process algebra Communicating Sequential Processes (CSP) Ros97] to discover de synchronisation attacks on...
Cited by: More
Modeling TCP/IP Networks Topology for Network.. - Zakeri Shahriari Jalili (2005) (Correct)
Using Data-Independence in the Analysis of Intrusion.. - Rohrmair, Lowe (2003) (Correct)
Using Data-Independence in the Analysis of - Intrusion Detection Systems (Correct)
Active bibliography (related documents): More All
0.5: Constructing a DNS-Based Client Redirector for Generic.. - Gascon, Lim, Yu, Tagle (Correct)
0.5: An Analysis of Some Software Vulnerabilities - Krsul, Spafford, Tripunitara (1998) (Correct)
0.2: Intrusion Detection: A Bibliography - Mé, Michel (2001) (Correct)
Similar documents based on text: More All
0.7: Characterizing the Performance of Network Intrusion .. - Schaelicke.. (2003) (Correct)
0.6: Using CSP to detect errors in the TMN protocol - Lowe, Roscoe (1997) (Correct)
0.6: Breaking and Fixing the Needham-Schroeder Public-Key Protocol.. - Lowe (1996) (Correct)
Related documents from co-citation: More All
2: Bro: A system for detecting network intruders in real-time - Paxon - 1998
2: RFC 791 Internet Protocol DARPA Internet program protocol specification (context) - Rey - 1981
2: and denial of service: Eluding network intrusion detection (context) - Ptacek, Newsham et al. - 1998
BibTeX entry: (Update)
Gordon Rohrmair and Gavin Lowe. Using CSP to detect insertion and evasion possibilities within the intrusion detection area. In Proceedings of BCS Workshop on Formal Aspects of Security, 2002. http://citeseer.ist.psu.edu/rohrmair02using.html More
@misc{ rohrmair02using,
author = "G. Rohrmair and G. Lowe",
title = "Using CSP to detect insertion and evasion possibilities within the intrusion
detection area",
text = "Gordon Rohrmair and Gavin Lowe. Using CSP to detect insertion and evasion
possibilities within the intrusion detection area. In Proceedings of BCS
Workshop on Formal Aspects of Security, 2002.",
year = "2002",
url = "citeseer.ist.psu.edu/rohrmair02using.html" }
Citations (may not include all citations):2732 Communicating Sequential Processes (context) - Hoare - 1985 ACM DBLP
227 Formal methods: State of the art and future directions - Clarke, Wing - 1996 DBLP
195 The Theory and Practice of Concurrency (context) - Roscoe - 1998
70 Building Internet Firewalls (context) - Chapman, Zwicky et al. - 2000 ACM
65 BRO: A system for detecting network intruders in real-time - Paxton - 1999 DBLP
59 Execution Monitoring of Security Critical Programs in a Dist.. (context) - Ko - 1996
59 Proving security protocols with model checkers by data indep.. - Roscoe, Broadfoot - 1999 ACM DBLP
52 Automated detection of vulnerabilities in privileged program.. - Ko, Fink et al. - 1994
51 and denial of service: Eluding network intrusion detection (context) - Ptacek, Newsham et al. - 1998
34 Synthesizing fast intrusion preventiondetection system from .. - Uppuluri, intrusion et al.
22 RFC 2460 Internet Protocol (context) - Hinden, Deering - 1998
21 Research in intrusion-detection systems: A survey - Axelsson - 1999
16 Using model checking to analyze network vulnerabilities (context) - Ritchey, Ammann - 2000 ACM DBLP
12 Automating data independence - Broadfoot, Lowe et al. - 2000 ACM DBLP
11 On preventing intrusions by process behavior monitoring - Sekar, Bowen et al. - 1999 ACM DBLP
9 Test generation and recognition with formal methods - Ammann, Black - 2000
7 Model-based analysis of configuration vulnerabilities - Ramakrishan, Sekar ACM DBLP
3 RFC 791 Internet Protocol DARPA Internet program protocol sp.. (context) - Rey - 1981
2 TCPIP and Related Protocol (context) - TCP, Related et al. - 1998
2 RFC 1858 Security considerations for IP fragment filtering (context) - Reed, Ziemba et al. - 1995
1 New generation Internet - priorities for action in migrating.. (context) - the, Communities - 2002
1 Network Intrusion Detection Signatures - Part (context) - Kent - 2001
1 ISE Department (context) - Ammann, Ding et al. - 2000
1 fifth edition edition (context) - Gardiner, Goldsmith et al. - 2000
1 host-based intrusion detection (context) - Systems, vs - 1998
1 Intrusion detection systems - whitepaper (context) - Systems - 1999
http://www.nfr.com/
http://www.nessus.org/
Documents on the same site (http://web.comlab.ox.ac.uk/oucl/work/gavin.lowe/Security/Papers/index.html): More
Towards a Completeness Result for Model Checking of Security.. - Lowe (1999) (Correct)
Analyzing a Library of Security Protocols using Casper and FDR - Donovan, Norris, Lowe (1999) (Correct)
An Attack on the Needham-Schroeder Public-Key Authentication.. - August (1995) (Correct)
Online articles have much greater impact More about CiteSeer.IST Add search form to your site Submit documents Feedback
CiteSeer.IST - Copyright Penn State and NEC