IDS/A: An Interface between Intrusion Detection System and Application
作者: Andrew Hutchison , Marc Welz
DOI:
关键词:
摘要: We describe a number of problems which may reduce the effectiveness conventional network intrusion detection system. These are result IDS having to second-guess components or applications it is protecting. propose bi-directional interface between and application. Applications use this their state submit actions for approval IDS. The thus receives information first-hand able block suspect immediately. Apart from eliminating some abovementioned problems, also make possible extend uses systems such tasks as gradual, continuous authentication automated least privilege enforcement.
raid-symposium.org 参考文章(8)
Timothy N. Newsham, Thomas H. Ptacek, Insertion, Evasion, and Denial of Service: Eluding Network Intrusion Detection ,(1998)
M. Bishop, A standard audit trail format National information systems security conference, Baltimore, MD (United States), 10-13 Oct 1995. ,(1995)
A. Hutchison, M. Welz, Incremental security in open, untrusted networks ieee computer society workshop on future trends of distributed computing systems. pp. 151- 154 ,(1999) , 10.1109/FTDCS.1999.818798
Crispin Cowan, Calton Pu, Death, taxes, and imperfect software: surviving the inevitable new security paradigms workshop. pp. 54- 70 ,(1998) , 10.1145/310889.310915
J.S. Balasubramaniyan, J.O. Garcia-Fernandez, D. Isacoff, E. Spafford, D. Zamboni, An architecture for intrusion detection using autonomous agents annual computer security applications conference. pp. 13- 24 ,(1998) , 10.1109/CSAC.1998.738563
Kui W. Mok, Salvatore J. Stolfo, Wenke Lee, Mining audit data to build intrusion detection models knowledge discovery and data mining. pp. 66- 72 ,(1998) , 10.7916/D8FX7H6X
D.E. Denning, An Intrusion-Detection Model IEEE Transactions on Software Engineering. ,vol. 13, pp. 222- 232 ,(1987) , 10.1109/TSE.1987.232894
Wietse Z. Venema, TCP WRAPPER : Network monitoring, access control, and booby traps Proceedings of the Third Usenix UNIX Security Symposium, Baltimore, MD, September 1992. ,(1992)