• DocumentCode
    2415955
  • Title

    Experimenting with a policy-based HIDS based on an information flow control model

  • Author

    Zimmermann, Jacob ; Mé, Ludovic ; Bidan, Christophe

  • Author_Institution
    SUPELEC, France
  • fYear
    2003
  • fDate
    8-12 Dec. 2003
  • Firstpage
    364
  • Lastpage
    373
  • Abstract
    In 2002 we proposed a model for policy-based intrusion detection, based on information flow control. In the present paper, we show its applicability and effectiveness on a standard OS. We present results of two set of experiments, one carried out in a completely controlled environment, the other on an operational server with real network traffic. Our results show that the model fulfills its goals and serves as a successful runtime policy-based intrusion detector.
  • Keywords
    network operating systems; security of data; telecommunication security; information flow control; network traffic; policy-based intrusion detection; Communication system traffic control; Detectors; Electronic mail; Event detection; Information security; Intrusion detection; Jacobian matrices; Network servers; Runtime; Traffic control;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Computer Security Applications Conference, 2003. Proceedings. 19th Annual
  • Print_ISBN
    0-7695-2041-3
  • Type

    conf

  • DOI
    10.1109/CSAC.2003.1254341
  • Filename
    1254341
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2415955