NATE - Network analysis of anomalous traffic events, a low-cost approach

Proceedings New Security Paradigms Workshop

Volumn , Issue , 2001, Pages 89-96

  Taylor, Carol ^a   Alves Foss, Jim ^a  

^a University of Idaho   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

COMPUTER CRIME; COMPUTER NETWORKS; SECURITY SYSTEMS; SYSTEMS ANALYSIS;

ANOMALOUS TRAFFIC EVENTS; INTRUSION DETECTION SYSTEM;

SECURITY OF DATA;

EID: 0242456143     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (23)

1. J. Allen et al. State of the practice intrusion detection technologies. Carnegie Mellon, SEI, Tech Report, CMU/SEI-99-TR-028, ESC-99-028, January 2000.
2. Forrest, S., S.A. Hofmeyr. Computer immunology. Communications of the ACM, (40)5:88-96, October 1997.
3. L. T. Heberlein, G. V. Dias, K. N. Levitt, B. Mukherjee, J. Wood, and D. Wolber. A network security monitor. In Proceedings of the IEEE Symposium on Research in Security and Privacy, Oakland, CA, April 1990.
4. Hofmeyr, S.A., S. Forrest. Architecture for an artificial immune system. Evolutionary Computation, 7(1):45-68, 1999.
5. V. Jacobson, C. Leres, and S. McCanne. tcpdump. LBNL, University of California, June 1997, ftp://ftp.ee.lbl.gov/tcpdump.tar.Z.
6. H. S. Javitz, and A. Valdes. The NIDES statistical component: description and justification. Tech. Report, Computer Science Lab., SRI-Int., Menlo Park, CA, March 1994.
7. D. E. Johnson. Applied Multivariate Methods for Data Analysis. Brooks/Cole Publishing Co., 1998.
8. L. Kaufman and P. J. Rousseeuw. Finding Groups in Data: An Introduction to Cluster Analysis. Wiley Series in Probability and Mathematical Statistics, John Wiley and Sons, Inc., 1990.
9. K. Kendell. A database of computer attacks for the evaluation of intrusion detection systems. Masters Thesis, MIT, June 1999
10. R. Lippmann and M. Zissman. Intrusion detection technical evaluation - 1998 project summary. www.darpa.mit/ito.
11. P. G. Neumann, P. A. Poras. Experiences with Emerald to date. Proceedings of 1st Usenix Workshop on Intrusion Detection and Network Monitoring, Santa Clara, CA, Apr. 11-12, 1999.
12. S. Northcutt, V. Irwin, B. Ralph. Shadow. Naval Surface Warfare Center Dahlgren Lab., 1998.
13. V. Paxson. Experiences learned from Bro. login; The Usenix Assoc. Magazine, Sept. 1999, 21-22.
14. M. J. Ranum, K. Landfield, M. Stolarchuk, M. Sienkiewicz, A. Lambeth, E. Wall. Implementing a generalized tool for network monitoring. Proceedings of 11th Syst. Admin. Conf., San Diego, CA, Oct. 1997.
15. M. Roesch. Snort - lightweight intrusions detection for networks. www.clark.net/~roesch/security.html.
16. D. Ruiu. Cautionary tales: stealth coordinated attack howto.www.nswc.navy.mil/ISSEC/CID/Stealth_Coordinated_Attack.html. 1999.
17. SAS Institute. SAS/STAT Users' Guide, Version 6, Fourth Edition, Vol. 1, SAS Institute, 1990.
18. R. L. Scheaffer, W. Mendenhall III and R. L. Ott. Elementary Survey Sampling. Wadsworth Publ. Co., 1996.
19. S. E. Smaha. Haystack: an intrusion detection system. Proceedings IEEE Fourth Aerospace Computer Science Applications Conference, Orlando, FL, Dec. 1988.
20. S. E. Smaha, T. Grance, D. M. Teal and D. Mensur. Dids - motivation, architecture, and an early prototype. Proceedings of 14th National Computer Security Conference, Washington, DC, Oct. 1991.
21. A. Somayaji, S.A. Hofmeyr, S. Forrest. Principals of a computer immune system. In 1997 New Security Paradigms Workshop, Langdale, Cumbria, UK.
22. S. Staniford-Chen, S. Cheung, R. Crawford, M. Dilger, J. Frank, J. Hoagland, K. Levitt, C. Wee, R. Yip, D. Zerkle. GrIDS - a graph-based intrusion detection system for large networks. The 19th National Information Systems Security Conference, Oct. 1998.
23. G. Vigna, R. A. Kemmerer. NetStat: a networks-based intrusion detection approach. Proceedings of the 14th Annual Computer Science Applications Conference, Scottsdale, AZ, Dec. 1998.