You are here: silicon.com > Resources > White Papers > Security > Intrusion - Tampering > Network Security

Network Security White Papers

Undermining an Anomaly-Based Intrusion Detection System Using Common Exploits

Tags:
network security

Overview Earlier many anomaly-detection techniques have been proposed and/or deployed to provide early warnings of cyber-attacks, particularly of those attacks involving masqueraders and novel methods. To date, however, there appears to be no study which has identified a systematic method that could be used by an attacker to undermine an anomaly-based intrusion detection system. This paper shows how an adversary can craft an offensive mechanism that renders an anomaly-based intrusion detector blind to the presence of on-going, common attacks. It presents a method that identifies the weaknesses of an anomaly-based intrusion detector, and shows how an attacker can manipulate common attacks to exploit those weaknesses.

Further White Paper Details
Publisher	Springer Science+Business Media	File Format	PDF
Date Published	October 2002
Format	White Papers
Topics	Network Security, Security Tools, Intrusion Detection Systems

Did you find this white paper useful? 3 out of 8 users found this white paper useful

Balancing Security Against Productivity

Publisher:
Novell

Novell Zenworks Endpoint Security Management: Total Control from a Single Console

Publisher:
Novell

Secure Desktop On-Demand Webcast

Publisher:
Novell

County Government Increases the Security of Its Network

Publisher:
Microsoft

Memorial Manufacturer Streamlines Order Processing, Assures Network Security

Publisher:
Microsoft

Insecure software an open door to hackers

These attacks are designed to take advantage of the built-in weaknesses some applications have. But security solutions such as VPNs, firewalls and intrusion detection systems do not protect the applications.

Channel:
Security Strategy

Catching wireless hackers in the act

The so-called Wireless Internet Security Experiment, or WISE, aims to "develop effective information security, intrusion detection, and incident response, and forensic methodologies for wireless networks," according to the project's web page.

Channel:
Security Strategy

Oracle warns customers of "highly critical" flaw

In a terse but strongly worded advisory released to customers last week, Oracle said a software flaw in its Oracle 11i E-Business Suite and its Oracle Applications 11.0 could let an attacker take control of the database that powers the programs.

Channel:
Malware

Malware ID scheme set to sort naming muddle

This time, US-CERT, the part of the US Department of Homeland Security that co-ordinates response to cyber attacks, is running the show. A desktop antivirus product may display a different name for a fast-spreading worm than the scanner at the...

Channel:
Security Strategy
Tags:
cme,
virus,
worm

Cracked: The Great Firewall of China

If an attacker had identified the machines used by regional government offices, they could block access to Windows Update, or prevent Chinese embassies abroad from accessing specific Chinese web content.

Locking down financial security

And the attack rated most threatening by the banks - phishing - happens without the banks' involvement, as thieves exploit customers directly. Systems that analyse users' behaviour are one method of refining fraud detection, he says.

Live Webcast: Telecoms 2.0 - Where is telecoms heading?

In this webcast, our panel of experts will review where we are with next generation telecoms in the UK, working through the concept of 'Telecoms 2.0': - Realising the potential of Next Generation Networks - why it isn't just about the technology? - What attributes should firms be looking for in their telco partner? - Is the relationship between telco provider and customer changing? - What things need to happen to make next generation services a reality? - You say you want the supplier to change. Do you want to change too? - What is Telecoms 2.0?

Publisher:
ZDNet UK

Telecom 2.0: Mind over matter

ntl:Telewest Business believes that the role of the telco is evolving. Gone are the days when it was enough to simply focus on circuits and minutes, customers now need a far higher degree of interaction and look for suppliers who will talk business solutions with them.

Publisher:
ntl:Telewest Business

IBM Information Server Change Data Capture

In today's fast-paced world, access to real-time data has never been more important. To be successful, organizations need to be able to report and analyze corporate data quickly and easily, regardless of what applications created the data, what platform they're running on, or what database they're stored in.

Publisher:
IBM

An examination of server consolidation: the trends that can drive efficiencies and help businesses gain a competitive edge

This white paper provides a starting point for organizations contemplating server consolidation. It includes an overview of server consolidation concepts and techniques and provides guidance on methodologies. It also looks at the potential cost savings associated with server consolidation and offers information on how organizations can sustain the advantage they have gained by consolidating their servers.

Publisher:
IBM

Also on silicon.com

Site Navigation:

Network Security White Papers

Undermining an Anomaly-Based Intrusion Detection System Using Common Exploits

Quick Sitemap Links:

About Us

Search

Blogs

Verticals

Advertising Features

CNET Networks in Europe

CNET Networks in the United States

CNET Networks in Asia Pacific