Title :
Control and estimation methods in information assurance - a tutorial on intrusion detection systems
Author :
Cabrera, João B D ; Mehra, Raman K.
Author_Institution :
Sci. Syst. Co., Woburn, MA, USA
Abstract :
Intrusion detection systems (IDSs) are relatively complex devices that monitor information systems in search for security violations or attacks. Following a presentation of the motivation, origins and the main elements of intrusion detection, IDSs are reviewed from a systems and control viewpoint, and four increasingly complex problems are identified: (1) off -line IDS; (2) off-line IDS with Bayesian cost models; (3) real time IDS with Bayesian and temporal cost models; and (4) real time IDS with feedback. The relevant literature on the four problems is surveyed. While most of the research efforts so far have been concentrated on the detection problems associated with off-line IDSs, recent challenges such as overload attacks against the IDS are now motivating researches on real time systems.
Keywords :
Bayes methods; computer science education; information systems; real-time systems; security of data; Bayesian cost models; feedback; information assurance; information systems; intrusion detection systems; off line systems; real time systems; security violations; temporal cost models; Bayesian methods; Control system synthesis; Control systems; Costs; Information security; Information systems; Intrusion detection; Monitoring; Real time systems; Tutorial;
Conference_Titel :
Decision and Control, 2002, Proceedings of the 41st IEEE Conference on
Print_ISBN :
0-7803-7516-5
DOI :
10.1109/CDC.2002.1184714
