Welcome to IEEE Xplore 2.0: Scenario based threat detection and attack analysis

Cart | Sitemap | Help

Abstract


	BROWSE	SEARCH	IEEE XPLORE GUIDE	SUPPORT

View TOC

Scenario based threat detection and attack analysis
Pi-Cheng Hsiu Chin-Fu Kuo Tei-Wei Kuo Juan, E.Y.T.
Dept. of Comput. Sci. & Inf. Eng., National Taiwan Univ., Taipei, Taiwan;

This paper appears in: Security Technology, 2005. CCST '05. 39th Annual 2005 International Carnahan Conference on
Publication Date: 11-14 Oct. 2005
On page(s): 279- 282
ISBN: 0-7803-9245-0
INSPEC Accession Number: 8814964
Digital Object Identifier: 10.1109/CCST.2005.1594819
Current Version Published: 2006-02-21

Abstract
This paper targets two essential issues in intrusion detection system designs: the optimization of rule selection and the attack discovery in attack analysis. A scenario-based approach is proposed to correlate malicious packets and to intelligently select intrusion detection rules to fire. We propose algorithms for rule selection and attack scenario identification. Potential threats and their relationship for a gateway and Web-server applications are explored as an example in the study. The proposed algorithms are implemented over Snort, a signature-based intrusion detection system, for which we have some encouraging performance evaluation results.

Index Terms
Available to subscribers and IEEE members.

References
Available to subscribers and IEEE members.

Citing Documents
Available to subscribers and IEEE members.

You are not logged in.

Guests may access Abstract records free of charge.