Sara Stoecklin scite author profile

Sara Stoecklin

5Publications

21Citation Statements Received

32Citation Statements Given

How they've been cited

How they cite others

Affiliations

Florida State University-Panama, Florida Agricultural and Mechanical University, Florida State University

Publications

Order By: Most citations

Distinguishing false from true alerts in Snort by data mining patterns of alerts

Long¹,

Schwartz²,

Stoecklin³

2006

View full text Add to dashboard Cite

The Snort network intrusion detection system is well known for triggering large numbers of false alerts. In addition, it usually only warns of a potential attack without stating what kind of attack it might be. This paper presents a clustering approach for handling Snort alerts more effectively. Central to this approach is the representation of alerts using the Intrusion Detection Message Exchange Format, which is written in XML. All the alerts for each network session are assembled into a single XML document, thereby representing a pattern of alerts. A novel XML distance measure is proposed to obtain the distance between two such XML documents. A classical clustering algorithm, implemented based on this distance measure, is then applied to group the alert patterns into clusters. Our experiment with the MIT 1998 DARPA data sets demonstrates that the clustering algorithm can distinguish between normal sessions that give rise to false alerts and those sessions that contain real attacks, and in about half of the latter cases can effectively identify the name of the attack.

show abstract

A case-based approach to network intrusion detection

Schwartz

Stoecklin

Yilmaz

View full text Add to dashboard Cite

An innovative approach to teaching refactoring

Smith

Stoecklin

Serino

2006

View full text Add to dashboard Cite

Teaching students to build well formed object-oriented methods through refactoring

Stoecklin

Smith

Serino

2007

View full text Add to dashboard Cite

Refactoring is the process of transforming the internal structure of existing code while keeping the integrity of the code's functional requirements. Refactoring is proven to increase program maintainability, flexibility, and understandability and is recognized as a best practice in the software development community. However, with the exception of courses or lectures on extreme programming, refactoring is overlooked in the computer science curriculum. This paper presents the fourth lesson of an innovative pedagogical approach to teaching refactoring on the college level. This lesson covers the creation of well formed object-oriented methods including characteristics for evaluating such methods. Through this hands-on approach, building well formed object-oriented methods through refactoring can be better understood and integrated into the computer science curriculum.

show abstract

Creating a reusable GUI component

Stoecklin

Allen

2002

Softw Pract Exp

View full text Add to dashboard Cite

Application development of a large number of graphical user interface (GUI) screens and reports requires a labor‐intensive process. In the typical scenario, a GUI developer drags each component, such as the textfield, label, and error messages, on each of the new GUI screens or reports. They then set the component properties and perhaps write any validation routines for input data. Using the proposed Observation Panel Bean (OPB), the developer drags only one component per field, and the OPB dynamically builds the GUI components with consistent properties and links the observation field to the needed validation routine. With little development effort these fields are simply selected from the data dictionary and placed on the GUI. The proposed OPB uses Fowler's observation pattern as a high‐level abstraction representing attributes observed about information in the application domain. The panel collaborates with the observation pattern to set the label, error message, and properties of the various components. Yoder's validator pattern collaborates with the observation pattern and the data dictionary to validate the observations. The proposed OPB decreases GUI development time, adds adaptability to GUI design, and increases consistency in GUI component presentation. Copyright © 2002 John Wiley & Sons, Ltd.

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Sara Stoecklin

Distinguishing false from true alerts in Snort by data mining patterns of alerts

A case-based approach to network intrusion detection

An innovative approach to teaching refactoring

Teaching students to build well formed object-oriented methods through refactoring

Creating a reusable GUI component

Contact Info

Product

Resources

About