Kernal-based intrusion detection using bloom filters
作者: David P. Mankins
DOI:
关键词:
摘要: Kernel-based intrusion detection using Bloom filters is disclosed. In one of many possible embodiments for detecting an attack, a filter provided and used to generate data object. The object contains representative expected system-call behavior associated with computer program. embedded in operating system (“OS”) kernel upon invocation the Actual compared
lens.org 参考文章(19)
Chandramohan Thekkath, Mark Lillibridge, Erwin Oertli, David Andersen, Timothy Mann, Minwen Ji, John MacCormick, Michael Burrows, Marcos Aguilera, Method and system for securing block-based storage with capability data ,(2003)
Stephen Bailey Peckham, Eric Philip Fried, Dynamic Loading of Kernel Extensions ,(2011)
Mark D. Lillibridge, John P. MacCormick, Marcos K. Aguilera, System and method for preventing replay attacks ,(2003)
Damon V. Danieli, Limiting interaction between parties in a networked session ,(2003)
Eric Nassar Robertson, Roderick Lee Dorris, Portable microkernel operating system verification and testing ,(1995)
On-Ching Yue, Mooi Chuah, Wing Lau, Methods and devices for providing distributed, adaptive IP filtering against distributed denial of service attacks ,(2002)
Cheuk W. Ko, Automatically generating valid behavior specifications for intrusion detection ,(2001)
William F. Pittore, Joseph E. Provino, Tom Allen, Dynamically configurable kernel ,(1993)
David Mark Indeck, Ronald S. Indeck, Jason R. White, Naveen Singla, Method and system for accelerated stream processing ,(2008)