Abstract:
One of the basic principles of cryptography is that the security of a system must depend not on keeping secret the algorithm, but only the key. This principle is known as...Show MoreMetadata
Abstract:
One of the basic principles of cryptography is that the security of a system must depend not on keeping secret the algorithm, but only the key. This principle is known as Kerckhoffs' Principle. In this paper we propose application of this principle in intrusion detection systems. The fact that attackers know the intrusion detection algorithm will not help them if there is a secret key for each implementation that makes it different enough from the others. Implementation of network packet payload anomaly detection IDS that enables application of the idea is presented. Results for various keys confirm excellent detection capabilities. Proof of concept mimicry attack protection example is provided.
Published in: Networks 2008 - The 13th International Telecommunications Network Strategy and Planning Symposium
Date of Conference: 28 September 2008 - 02 October 2008
Date Added to IEEE Xplore: 01 December 2014
CD:978-963-8111-68-5