Title :
Rapid Prototyping of Intrusion Detection Systems
Author :
Kordon, Fabrice ; Voron, Jean-Baptiste ; Iftode, Liviu
Author_Institution :
Univ. Pierre & Marie Curie, Paris
Abstract :
Designing security softwares that evolve as quickly as threats is a truthful challenge. In addition, current software becomes increasingly more complex and difficult to handle even for security experts. Intrusion Detection Softwares (IDS) represent a solution that can alleviate these concerns. This paper proposes a framework to automatically build an effective online IDS which can check if the program´s expected behavior is respected during the execution. The proposed framework extracts relevant information from the program´s source code to build a dedicated IDS. We use the GCC compiler to produce the structure of our behavior´s model and ensure the IDS is correct. Thanks to Petri nets, our framework allows program offline monitoring and simplifies the online monitoring development.
Keywords :
Petri nets; program compilers; program verification; safety-critical software; security of data; software prototyping; system monitoring; GCC compiler; Petri net; intrusion detection system; online monitoring development; program offline monitoring; rapid prototyping; security software design; Computer languages; Computer science; Computer security; Computerized monitoring; Data mining; Information security; Intrusion detection; Petri nets; Prototypes; Software prototyping;
Conference_Titel :
Rapid System Prototyping, 2007. RSP 2007. 18th IEEE/IFIP International Workshop on
Conference_Location :
Porto Alegre
Print_ISBN :
0-7695-2834-1
DOI :
10.1109/RSP.2007.34
