Abstract:
Abstract-- Computer attacks are typically described in terms of a single exploited vulnerability or as a signature composed of a specific sequence of events. These approaches lack the ability to characterize complex scenarios or to generalize to unknown attacks. Rather than think of attacks as a series of events, we view attacks as a set of capabilities that provide support for abstract attack concepts that in turn provide new capabilities to support other concepts. This paper describes a flexible extensible model for computer attacks, a language for specifying the model, and how it can be used in security applications such as vulnerability analysis, intrusion detection and attack generation
Citations
|
316
|
A Sense of Self for UNIX Processes
– Forrest
- 1996
|
|
110
|
Execution Monitoring of Security-Critical Programs in Distributed Systems: A Specification-based Approach
– Ko, Ruschitzka, et al.
- 1997
|
|
78
|
The COPS Security Checker System
– Farmer, Spafford
- 1990
|
|
58
|
NetSTAT: A Network-based Intrusion Detection Approach
– Vigna, Kemmerer
- 1998
|
|
20
|
A pattern-matching model for intrusion detection
– Kumar, Spafford
- 1994
|
|
17
|
Network security via reverse engineering of TCP code: vulnerability analysis and proposed solutions
– Guha, Mukherjee
- 1996
|
|
14
|
Security administrator's tool for analyzing networks. http://www.fish.com/ zen/satan/satan.html
– Farmer, Venema
- 1995
|
|
13
|
NetKuang–A multi-host configuration vulnerability checker
– Zerkle, Levitt
- 1996
|
|
6
|
A common intrusion specification language (CISL). http://seclab.cs.ucdavis.edu/cidf/cisl current.txt
– Feiertag, Kahn, et al.
- 1998
|
|
5
|
A Common Intrusion Detection Framework”, submitted to the Journal of Computer Security
– Kahn, Porras, et al.
- 2000
|
|
4
|
Execution Monitoring of Security Critical Programs in a Distributed System: A Specification-Based Approach
– Ko
- 1996
|
|
3
|
Kuang: Rule-based security checking
– Baldwin
- 1991
|
|
2
|
Tripwire: A Case Study in Integrity Monitoring
– Kim, Spafford
- 1997
|
