Mitigation of network tampering using dynamic dispatch of mobile agents

Computers and Security

Volumn 23, Issue 1, 2004, Pages 31-42

  DeMara, Ronald F ^a   Rocke, Adam J ^a  

^a UNIVERSITY OF CENTRAL FLORIDA   (United States)

Author keywords

File integrity analyzers; Host based security with network components; Insider risks; Mobile agent behaviours; Tampering modes

Indexed keywords

COMPUTER CRIME; DATA PRIVACY; ELECTRONIC CRIME COUNTERMEASURES; SOFTWARE AGENTS;

FILE INTEGRITY ANALYZERS; HOST BASED SECURITY WITH NETWORK COMPONENTS; INSIDER RISKS; MOBILE AGENT BEHAVIORS; TAMPERING MODES;

SECURITY OF DATA;

EID: 1242263788     PISSN: 01674048     EISSN: None     Source Type: Journal    
DOI: 10.1016/S0167-4048(04)00068-9     Document Type: Article

References (38)

1. Anderson R., Kuhn M. Tamper resistance - a cautionary note. Proceedings of the Second Usenix Workshop on Electronic Commerce. 1996;1-11. Available from: http://citeseer.nj.nec.com/anderson96tamper.html.
2. Anderson R, Bozek T, Logstaff T, Meitzler W, Skroch M, Wyk KV. Research on mitigating the insider thread to information systems. Workshop Proceedings, RAND Corporation Report CF-163.
3. Axelsson S. The base-rate fallacy and the difficulty of intrusion detection. ACM Trans Inform Syst Secur (TISSEC). 3:(3):2000;186-205.
4. Bernardes M.C., dos Santos Moreira E. Implementation of an intrusion detection system based on mobile agents. Proceedings International Symposium on Software Engineering for Parallel and Distributed Systems. 2000;158-164.
5. Bott T. Evaluating the risk of industrial espionage. Proceedings of the Reliability and Maintainability Symposium. 1999;230-237.
6. Cashin E.L. Integrity file verification system. http://integrit.sourceforge.net.
7. Coosta C. Tach design concept. Lockheed Martin Corporation.
8. Debar H., Dacier M., Wespi A. Towards a taxonomy of intrusion-detection systems. Comput Netw. 31:1999;805-822.
9. DeMara RF, Rocke AJ. Confidant operational concept. Tech. Rep. TR-RFD2003-02, School of Electrical Engineering and Computer Science, University of Central Florida; 2003.
10. File integrity checkers. http://www.networkintrusion.co.uk/integrity.htm.
11. Frincke D.A., Tobin D., McConnell J.C., Marconi J., Polla D. A framework for cooperative intrusion detection. Proceedings of 21st NIST-NCSC National Information Systems Security Conference. 1998;361-373. Available from: http://citeseer.nj.nec.com/frincke98framework.html.
12. Fyodor Y. 'SNORTNET' - a distributed intrusion detection system. http://snortnet.scorpions.net/snortnet.pdf:June 2000;
13. Galiasso P., Bremer O., Hale J., Shenoi S., Ferraiolo D., Hu V. Policy meditation for multi-enterprise environments. Computer Security Applications Conference, 1999. (ACSAC '99) Proceedings. 1999;219-228.
14. Heady R, Luger G, Maccabe A, Servilla M. The architecture of a network level intrusion detection system. Master's thesis, Department of Computer Science, University of New Mexico; August 1990.
15. Helmer G., Wong J., Honavar V., Miller L. Intelligent agents for intrusion detection. http://citeseer.nj.nec.com/helmer98intelligent.html:September 1998;
16. Hoglund A.J., Hatonen K., Sovari A.S. A computer host-based user anomaly detection system using the self-organizing map. Proceedings of the IEEE-INNS-ENNS International Joint Conference on Neural Networks, 2000. IJCNN 2000. vol. 5:2000;411-416.
17. Howard JD, Longstaff TA. A common language for computer security incidents. Sandia report SAND98-8667, Sandia National Laboratories; October 1998.
18. IBM Research. Aglets. http://www.trl.ibm.com/aglets.
19. Jansen W., Mell P., Karygiannis T., Marks D. Applying mobile agents to intrusion detection and response. National Institute of Standards and Technology, Computer Security Division http://csrc.nist.gov/publications/nistir/ir6416.pdf:1999;
20. Kahn C. Tolerating penetrations and insider attacks by requiring independent corroboration. Proceedings of the 1998 Workshop on New Security Paradigms. 1998;122-133 ACM Press.
21. Kapoor B. Remote misuse detection system using mobile agents and relational database query techniques. Master's thesis, University of Central Florida; 2000.
22. Kim GH, Spafford EH. Experiences with tripwire: using integrity checkers for intrusion detection. Tech. Rep. CSD-TR-94-012, Department of Computer Sciences, Purdue University; 1994.
23. Kruegel C., Toth T. Applying mobile agent technology to intrusion detection. ICSE Workshop on Software Engineering and Mobility. 2001;. Available from: http://citeseer.nj.nec.com/kr01applying.html.
24. Kun Y., Xin G., Dayou L. Security in mobile agent system: problems and approaches. ACM SIGOPS Operating Syst Rev. 34:(1):2000;21-28.
25. Lehti R. Advanced intrusion detection environment. http://www.cs.tut.fi/̃rammer/aide.html.
26. Linden T. Nabou. http://www.nabou.org/en/software/nabou/.
27. Lu J. Mobile agent protocols for distributed detection of network intrusions. Master's thesis, University of Central Florida; 2000.
28. Neumann P.G., Porras P.A. Experience with EMERALD to date. Proceedings of 1st USENIX Workshop on Intrusion Detection and Network Monitoring. 1999;73-80. Available from: http://citeseer.nj.nec.com/neumann99experience.html.
29. Rauch J. Basic file integrity checking, SecurityFocus.com. http://www.securityfocus.com/focus/linux/articles/fileinteg.html:August 2000;
30. Rocksoft, Veracity - nothing can change without you knowing: data integrity assurance. http://www.rocksoft.com/veracity/.
31. SANS Institute. Intrusion detection faq: what is the role of a file integrity checker like tripwire in intrusion detection? http://www.sans.org/newlook/resources/IDFAQ/integrity_checker.htm:2000;
32. Schnackenberg D., Djahandari K., Sterne D. Infrastructure for intrusion detection and response. DARPA Information Survivability Conference and Exposition, 2000. DISCEX '00. vol. 2:1999;3-11.
33. Seifried K. LASG - attack detection. http://gd.tuwien.ac.at/opsys/linux/lasg-www/attack-detection.
34. Spafford E.H., Zamboni D. Intrusion detection using autonomous agents. Comput Netw. 34:(4):2000;547-570.
35. Wang G. Mobile agent file integrity analyzer. Master's thesis, University of Central Florida; 2001.
36. WetStone Technologies, Inc. SMART Watch. http://www.wetstonetech.com/smartwatch_ns.html.
37. White G.B., Fisch E.A., Pooch U.W. Cooperating security managers: a peer-based intrusion detection system. IEEE Netw. 1996;20-23.
38. Zhu Y. Decentralized control schemes for coordinating distributed processing activities of mobile software agents. Master's thesis, University of Central Florida; 2000.