Characterising intrusion detection sensors
作者: Siraj A. Shaikh , Howard Chivers , Philip Nobles , John A. Clark , Hao Chen
DOI: 10.1016/S1353-4858(08)70107-7
关键词:
摘要: An intrusion detection sensor is defined as a device that collects and analyses network traffic for the purpose of identifying suspicious events. Too often value associated with its data collection analysis features. Experience tells us such sensors fall under range different types are diverse in their operational characteristics, some which have been little studied. In this article, researchers from Cranfield York universities examine these location response, also characterise various costs sensors. A common definition an defines it ''device events''.^1 This inevitable since so many systems (IDS) designed characteristics mind. There need to appreciate they add deployments particularly system perspective. Such important if be assessed collectively opposed effectiveness individual
york.ac.uk
coventry.ac.uk
elsevier.com
sci-hub.se 参考文章(12)
Gene Spafford, Alan Schwartz, Simson Garfinkel, Practical Unix & Internet Security, 3rd Edition O'Reilly Media, Inc.. ,(2003)
Christopher Krügel, Thomas Toth, Applying Mobile Agent Technology to Intrusion Detection ,(2001)
Elizabeth D. Zwicky, D. Brent Chapman, Deborah Russell, Building Internet Firewalls ,(1995)
Richard Bejtlich, The Tao of Network Security Monitoring: Beyond Intrusion Detection ,(2004)
Peter Szor, The Art of Computer Virus Research and Defense ,(2005)
Midori Asaka, T. Onabuta, T. Inoue, S. Goto, The use of mobile agents in tracing an intruder in a local area network pacific rim international conference on artificial intelligence. pp. 373- 382 ,(2000) , 10.1007/3-540-44533-1_39
Florian Kerschbaum, Eugene H. Spafford, Diego Zamboni, Using internal sensors and embedded detectors for intrusion detection Journal of Computer Security. ,vol. 10, pp. 23- 70 ,(2002) , 10.3233/JCS-2002-101-203
Eugene H Spafford, Diego Zamboni, Intrusion detection using autonomous agents recent advances in intrusion detection. ,vol. 34, pp. 547- 570 ,(2000) , 10.1016/S1389-1286(00)00136-5
M.M. Williamson, Throttling viruses: restricting propagation to defeat malicious mobile code annual computer security applications conference. pp. 61- 68 ,(2002) , 10.1109/CSAC.2002.1176279
Sander van Vugt, Managing Users and Groups Apress, Berkeley, CA. pp. 141- 170 ,(2015) , 10.1007/978-1-4302-6829-1_6