R. Sekar, T. Bowen, M. Segal  Home/Search
Context Related
| sunysb.edu/sekar/papers...usenixid99.ps argreenhouse.com/papers/b...idwsfin.pdf sunysb.edu/seclab/pubs/...usenixid99.ps Cached: PS.gz PS PDF This document uses CoBlitz to cache paper downloads. If your firewall is blocking outgoing connections to port 3125, you can use these links to download local copies.
Image Update HelpPS.gz PS PDF From: sunysb.edu/ccs/publications (more) (Enter author homepages) |
Rate this article:      (best)Comment on this article |
Abstract: Society's increasing reliance on networked information systems to support critical infrastructures has prompted interest in making the information systems survivable, so that they continue to perform critical functions even in the presence of vulnerabilities susceptible to malicious attacks. To enable vulnerable systems to survive attacks, it is necessary to detect attacks and isolate failures resulting from attacks before they damage the system by impacting functionality, performance or... (Update)
Context of citations to this paper: More
...main application appears to be audit trail generation and analysis. Bowen et al. have implemented the approach above in the Linux kernel [3]. Observations regarding the system calls invoked and assertions on the parameters to those system calls are used to manually create a...
...event traces that are performed slowly as normal behaviour, which renders them useless. Specification based detection [13, 14] and [24] were some of the first papers that recommended this approach. They distinguished between normal and intrusive behaviour by monitoring...
Cited by: More
International Journal of Information Security manuscript No. - Will Be Inserted (Correct)
Workshop on Information Assurance - United States Military (Correct)
A Framework For Trusted Instruction Execution Via.. - Milenkovic.. (Correct)
Active bibliography (related documents): More All
1.0: A Specification-Based Approach for Building Survivable Systems - Segal (1998) (Correct)
0.5: Hardening COTS Software with Generic Software Wrappers - Fraser, Badger, Feldman (1999) (Correct)
0.5: Mathematical Software: Past, Present, and Future - Boisvert (1999) (Correct)
Similar documents based on text: More All
0.8: Synthesizing Fast Intrusion Prevention/Detection Systems from .. - Sekar, Uppuluri (1999) (Correct)
0.5: User-Level Infrastructure for System Call Interposition: A.. - Jain, Sekar (1999) (Correct)
0.4: Experiences with Specification-based Intrusion Detection - Uppuluri, Sekar (2001) (Correct)
Related documents from co-citation: More All
7: Synthesizing Fast Intrusion PreventionDetection System from High Level Specifica.. - Uppuluri, Intrusion et al. - 1999
6: A Real-Time Intrusion-Detection Expert System (context) - Lunt, Tamaru et al. - 1990
6: Execution Monitoring of Security-Critical Programs in Distributed Systems: A Spe.. (context) - Ko, Ruschitzka et al. - 1997
BibTeX entry: (Update)
R. Sekar, T. Bowen and M. Segal, On Preventing Intrusions by Process Behavior Monitoring, USENIX Intrusion Detection Workshop, 1999. http://citeseer.ist.psu.edu/sekar99preventing.html More
@inproceedings{ sekarpreventing,
author = "R. Sekar and T. Bowen and M. Segal",
title = "On Preventing Intrusions by Process Behavior Monitoring",
pages = "29--40",
url = "citeseer.ist.psu.edu/sekar99preventing.html" }
Citations (may not include all citations):175 A Secure Environment for Untrusted Helper Applications - Goldberg, Wagner et al. - 1996
121 An Intrusion Detection Model (context) - Denning - 1987
121 Network Intrusion Detection (context) - Mukherjee, Heberlein et al. - 1994
74 Computer Immunology - Forrest, Hofmeyr et al. - 1997
66 Derivatives of Regular Expressions (context) - Brzozowski - 1964
64 From Regular Expressions to Deterministic Automata (context) - Berry, Sethi - 1986
63 Next-generation Intrusion Detection Expert System - Anderson, Lunt et al. - 1995
59 Execution Monitoring of SecurityCritical Programs in a Distr.. (context) - Ko - 1996
56 A survey of Intrusion Detection Techniques (context) - Lunt - 1993
56 A Real-Time Intrusion Detection Expert System (context) - Lunt - 1992
52 Automated detection of vulnerabilities in privileged program.. - Ko, Fink et al. - 1994
35 A Taxonomy of Computer Program Security Flaws (context) - Landwehr, Bull et al. - 1994
28 Penetration State Transition Analysis - A Rule Based Intrusi.. (context) - Porras, Kemmerer - 1992
25 A Neural Network Approach Towards Intrusion Detection (context) - Fox, Henning et al. - 1990
18 Adaptive Pattern Matching - Sekar, Ramakrishnan et al. - 1995
16 A PatternMatching Model for Intrusion Detection (context) - Kumar, Spafford - 1994
14 An evening with berferd (context) - Cheswick - 1992
11 Intrusion detection via system call traces (context) - Kosoresow, Hofmeyr
10 Checking for Race Conditions in File Access (context) - Bishop, Dilger - 1996
10 A Specification -Based approach for Building Survivable Syst.. - Sekar, Cai et al.
9 An Approach to Automatic Detection of Software Failures - Hlady, Kovacevic et al. - 1995
6 A real-time intrusion detection system for UNIX (context) - Ilgun - 1993
5 A Taxonomy of Security Faults (context) - Aslam, Krsul et al. - 1996
4 Software Defenses in RealTime Control Systems (context) - Connet - 1972
2 Technical Report CSD-TR (context) - Spafford, Worm - 1991
1 A Specification-Based Approach for Intrusion Detection (context) - Cai - 1998
1 ASL: A specification language for intrusion detection and ne.. (context) - Vankamamidi - 1998
1 A Real-time Packet Filtering Module for Network Intrusion De.. (context) - Yang - 1998
http://www.all.net/dtk/dtk.html
The graph only includes citing articles where the year of publication is known.
Documents on the same site (http://seclab.cs.sunysb.edu/ccs/publications.htm): More
Toward Cost-Sensitive Modeling for Intrusion Detection .. - Lee, Fan, Miller.. (2000) (Correct)
Resource-Constrained Model Checking of Recursive Programs - Basu, Kumar, Pokorny.. (2002) (Correct)
User-Level Infrastructure for System Call Interposition: A.. - Jain, Sekar (1999) (Correct)
Online articles have much greater impact More about CiteSeer.IST Add search form to your site Submit documents Feedback
CiteSeer.IST - Copyright Penn State and NEC