A network state based intrusion detection model

Author

Zheng, Shan ; Peng, Chen ; Ying, Xu ; Ke, Xu

Author_Institution

Nat. Lab of Software Dev. Environ., Beijing Univ. of Aeronaut. & Astronaut., China

fYear

2001

fDate

2001

Firstpage

481

Lastpage

486

Abstract

This paper presents a new approach, called the network state based model, to describe intrusions and attacks. In the model which uses FA theory and can detect unknown attacks, the attacks and intrusions are described by the states and state transitions of network protocols and operating systems. First, the paper shows that the model is feasible for intrusion detection, and then describes the intrusion detection system using this model by common intrusion detection framework. Finally, the network state based model is compared with some other models

Keywords

Internet; network operating systems; security of data; transport protocols; intrusion detection system; network operating systems; network protocols; network state based model; state transitions; Computer hacking; Data security; IP networks; Information security; Intrusion detection; Layout; Operating systems; Programming; Protocols; Robustness;

fLanguage

English

Publisher

ieee

Conference_Titel

Computer Networks and Mobile Computing, 2001. Proceedings. 2001 International Conference on

Conference_Location

Los Alamitos, CA

Print_ISBN

0-7695-1381-6

Type

conf

DOI

10.1109/ICCNMC.2001.962636

Filename

962636

Link To Document

https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=1832757