Adaptation techniques for intrusion detection and intrusion response systems

Ragsdale, Daniel; Carver, Curtis A.; Humphries, Jeffrey W.; Pooch, Udo W.

doi:10.1109/icsmc.2000.884341

Cited by 59 publications

(39 citation statements)

References 5 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…• Level of automation The classification according to the level of automation has been presented in early works by several authors [25,7,19]. However, employing only these categories gives a very broad view of the response systems and hence does not provide enough information about the existing research efforts.…”

Section: Taxonomy Of Intrusion Response Systemsmentioning

confidence: 99%

“…The response models proposed by Foo et al [10] and Carver et al [8,7,19] are examples of an adaptive approach.…”

Section: Static Vs Adaptivementioning

confidence: 99%

“…AAIRS, due to [8,7,19], provides adaptation through confidence metric associated with each IDS and through success metric corresponding to the response component of the system. The confidence metric indicates the rate of false positive alarms to correct number of intrusions generated by each IDS employed by the system.…”

Section: Static Vs Adaptivementioning

confidence: 99%

See 2 more Smart Citations

A taxonomy of intrusion response systems

Stakhanova¹,

Basu²,

Wong³

2007

IJICS

122

View full text Add to dashboard Cite

Recent advances in intrusion detection field brought new requirements to intrusion prevention and response. Traditionally, the response to an attack was manually triggered by an administrator. However, increased complexity and speed of the attack-spread during recent years showed acute necessity for complex dynamic response mechanisms. Although intrusion detection systems are being actively developed, research efforts in intrusion response are still isolated. In this work we present taxonomy of intrusion response systems, together with a review of current trends in intrusion response research. We also provide a set of essential fetures as a requirement for an ideal intrusion response system. DisciplinesInformation Security

show abstract

Section: Taxonomy Of Intrusion Response Systemsmentioning

confidence: 99%

“…The response models proposed by Foo et al [10] and Carver et al [8,7,19] are examples of an adaptive approach.…”

Section: Static Vs Adaptivementioning

confidence: 99%

See 1 more Smart Citation

A taxonomy of intrusion response systems

Stakhanova¹,

Basu²,

Wong³

2007

IJICS

122

View full text Add to dashboard Cite

show abstract

“…In paper [6] they considered the problem of providing anonymity to network communication when adversaries compromise an unknown subset of nodes in the network. They invent a game-theoretic equivalent, and proved the survival of Nash equilibrium.…”

Section: Literature Reviewmentioning

confidence: 99%

Optimal Game Theory for Network Security using IPDRS Engine

P¹,

Nadu²

2015

International Journal of Advanced Research in Computer and Comm

View full text Add to dashboard Cite

Abstract:With the tremendous growth of network technology, network attackers are also rationally increased to disrupt the activities and hacking the data from the network users by the intruder. To provide the security from the intruder is most important one. Many researchers were proposed a different approach for providing security they does not tackle the problem, it leads an untruthful in the network. In existing system they propose a game based intrusion request and response process by game play of header node to access the data by their correct play, from this if the real header play it in wrong method means all the client user under the header also suffer from the access of the data. To tackle this issue we enhanced the game theory based on the individual play in the network to avoid the suffering of misplayed game played by the header using the IPDRS Engine.

show abstract

“…[11] proposed a framework that is mainly designed to create cloud networks that are immune against the Distributed Denial of Service (DDoS) attacks [12]. The utilized IDS implementation was the Open Source Snort IDS and the framework itself is designed as a Distributed Intrusion Detection System (DIDS) [13] [14]. The proposed framework supports the idea of cooperative defense by the IDS sensors in the cloud network.…”

Section: Current Statusmentioning

confidence: 99%

Managing Intrusion Detection as a Service in Cloud Networks

Hamad¹,

Al-hoby²

2012

IJCA

View full text Add to dashboard Cite

Cloud computing is frequently being utilized to eliminate the need to local information resources. In this paper, we address the problem of intrusion detection in cloud environments and the possibility of allowing intrusion detection to be provided to clients as a service. The paper describes the Cloud Intrusion Detection Service (CIDS), which is intended to function as an intrusion detection web service to be provided for cloud clients in a service-based manner. CIDS utilizes the "Snort" open source intrusion detection system. The operating logic and user access webpages were developed using J2EE. We implemented a proof-of-concept prototype to evaluate the performance. CIDS was proved to be very friendly to resource allocation. Additionally, CIDS gave better attack detection rates and attack detection times than other solutions. These improvements can be beneficial to both cloud providers and cloud subscribers alike.

show abstract

Adaptation techniques for intrusion detection and intrusion response systems

Cited by 59 publications

References 5 publications

A taxonomy of intrusion response systems

A taxonomy of intrusion response systems

Optimal Game Theory for Network Security using IPDRS Engine

Managing Intrusion Detection as a Service in Cloud Networks

Contact Info

Product

Resources

About