You are here: silicon.com > Resources > White Papers > Security > Intrusion - Tampering > Network Security

Network Security White Papers

Experiences With Specification-Based Intrusion Detection

Tags:
network security

Overview Specification-based intrusion detection, where manually specified program behavioral specifications are used as a basis to detect attacks, have been proposed as a promising alternative that combine the strengths of misuse detection (accurate detection of known attacks) and anomaly detection (ability to detect novel attacks). However, the question of whether this promise can be realized in practice has remained open. The author answers this question in this paper, based on their experience in building a specification-based intrusion detection system and experimenting with it. The experiments included the 1999 DARPA/AFRL online evaluation, as well as experiments conducted using 1999 DARPA/ Lincoln Labs offline evaluation data. These experiments show that an effective specification-based IDS can be developed with modest efforts.

Further White Paper Details
Publisher	State University of New York, Stony Brook	File Format	PDF
Date Published	January 2009
Format	White Papers
Topics	Network Security, Intrusion Detection Systems

Did you find this white paper useful?

Balancing Security Against Productivity

What makes for great security? Is it about keeping the bad guys out or letting the good guys in? About defending attacks or preventing them? When IDG Research Services queried...

Publisher:
Novell

Security: New strides in preventing intrusions.

Need help eliminating risk in your IT environment? This ForwardView webshow describes how security appliances, which incorporate an array of security functions, can help you ward off security breaches without...

Publisher:
IBM

MessageLabs Intelligence : 2009 security Predictions

Having analyzed the global threat landscape for almost a decade, MessageLabs Team Skeptic™ is comprised of many world-renowned malware and spam experts who have a global view of threats across...

Publisher:
MessageLabs, now part of Symantec

IDC Vendor Spotlight

Organised ubiquity is a must for organisations to sucessfully "project" their users in any given landspace, at any given time, with secuirty policy. This White Paper covers issues surrounding secure...

Publisher:
BeCrypt

Trend Micro Enterprise Security white paper

This white paper reviews the content security threat landscape and how it has evolved into a more dangerous and high risk environment. The paper discussed how conventional content security approaches...

Publisher:
Trend Micro

Security experts warn of massive hack attack

Peapod contacted most major anti-virus and intrusion detection vendors late last week to alert them to the dangers of Investigator 2.0, but by Monday only two had replied. Ryan explained: "Most other Trojan Horses, like BackOrifice, create a...

Channel:
Security Strategy

Anti-virus vendors failing users, claims CA chief

To prevent this type of malware from attacking, companies should have both intrusion detection and firewalls as part of their security strategy, not just anti-virus software. He said: "I suspect Simon may be trying to push CA's firewall/intrusion...

Channel:
Security Strategy

Cisco set to cash in on network attack fears

Cisco has hinted it will be launching a gigabit speed intrusion detection system as well enhanced VPN products. The company already has the largest market share for network security devices, such as VPNs, firewalls and intrusion detection systems.

Channel:
Security Strategy

The weakest link in the security chain? You

CompTIA also noted that in the last several years, organisations have equipped themselves with sophisticated security infrastructure that better detect and prevent attacks. The study found that 96 per cent of respondents use antivirus software...

Channel:
Security Strategy

Obama: 'We are underprepared for cyber attack'

It suggests "intrusion detection and prevention systems" and "warning of cyber intrusions and attacks", while stressing that collaboration with privacy groups and industry is vital. We will deter, prevent, detect and defend against attacks and...

Channel:
Security Strategy
Tags:
obama

Cisco wireless LAN: At risk from 'skyjack' attack

To mitigate against any attacks, Cisco customers should disable the OTAP feature and use a separate intrusion detection system that can detect whether someone is snooping on the network, as well as monitor that all access points on a network are...

Channel:
LANs
Tags:
network,
cisco

Featured White Papers

The Value of Location Intelligence in the Communications Industry

Public Services are under pressure, the challenge is to do more with less. How do you improve citizen satisfaction, increase cost efficiencies and improve service delivery? The power of location intelligence is helping many local authorities and government departments make more informed decisions and derive greater value from current location-based information and data. Read this whitepaper to see how you can take advantage of location intelligence.

Publisher:
Pitney Bowes

Best Practices for Translating Customer Satisfaction into Revenue

Today's support organisations are focused on two top-level metrics: financial results and customer satisfaction. For most, it's easy to track financial performance, but customer satisfaction is akin to speaking a foreign language. How do you quantify customer satisfaction? Download the Best Practices for Benchmarking Customer Satisfaction to get industry research the Association of Support Professionals (ASP) on how to measure and leverage customer satisfaction.

Publisher:
Citrix Online

HP print solutions and 3M

the objective for 3M was to optimize office printing infrastructure at 3Mlocations worldwide Reduce total cost and environmental footprint. Some of the business benefits acheived by switching to HP print soultions, More than $3 million in savings in first two years and Per page costs reduced by up to 90 percent.