Protomon: Embedded monitors for cryptographic protocol intrusion detection and prevention

International Conference on Information Technology: Coding Computing, ITCC

Volumn 1, Issue , 2004, Pages 81-88

  Joglekar, Sachin P ^a   Tate, Stephen R ^a  

^a UNIVERSITY OF NORTH TEXAS   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

DATA COLLECTION; INTRUSION DETECTION SYSTEM (IDS); PROTOCOL ATTACKS; PROTOCOL SESSIONS;

CRYPTOGRAPHY; DATA ACQUISITION; DATA REDUCTION; MATHEMATICAL MODELS; MONITORING; NETWORK PROTOCOLS; PATTERN MATCHING;

COMPUTER SCIENCE;

EID: 3042550802     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ITCC.2004.1286430     Document Type: Conference Paper

References (28)

1. S. Staniford, J. Hoagland, J. McAlemey, SPADE, http://www.silicondefense. com/software/spice/
2. C. Taylor, J. Alves-Foss, NATE-Network Analysis of Anomalous Traffic Events, A Low-cost Approach, Proceedings of the New Security Paradigms Workshop '01, pp 89-96, September 2001.
3. M. Arshad, P. Chan, Identifying Outliers via Clustering for Anomaly Detection, Technical Report CS-2003-19, Dept. of Computer Science, Florida Institute of Technology, 2003.
4. S. Forrest, S.A. Hofmeyr, A. Spmayaji, A Sense of Self for Unix Processes, IEEE Symposium on Security and Privacy, 1996.
5. W. Lee, S. Stolfo, Data mining Approaches for Intrusion Detection, USENIX Security Symposium, 1998.
6. R.M. Needham, M.D. Schroeder, Using Encryption for Authentication in Large Networks of Computers, Communications of ACM, 21(12):993-999, December 1978.
7. D. Dolev, A. Yao, On the Security of Public Key Protocols, IEEE Transactions on Information Theory, 29(2): 198-208, March 1983.
8. J.K. Millen, S.C. Clark, S.B. Freedman, The interrogator: Protocol Security Analysis, IEEE Transaction Software Engineering, SE-13(2):274-288, Feb. 1987.
9. C. Meadows, Applying Formal Methods to the Analysis of a Key Management Protocol, Journal of Computer Security, 1:5-53, 1992.
10. G. Lowe, Breaking and Fixing the Needham-Schroeder Public Key Protocol using FDR, Tools and Algorithms for the Construction and Analysis of Systems, Volume 1055 of Lecture Notes in Computer Science, pp. 147-156, Springer-Verlag, 1996.
11. J.C. Mitchell, M. Mitchell, U. Stern, Automated Analysis of Cryptographic Protocols using Mur, Proc. 1997 IEEE Symposium on Security and Privacy, IEEE Computer Society Press, 1997.
12. D. Song, Athena - An Automatic Checker for Security Protocol Analysis, Proc. Computer Security Foundation Workshop, Mordano, Italy, June 1999.
13. I. Cervesato, N. Durgin, P. Lincoln, J. Mitchell, A. Scedrov, A Metanotaion for Protocol Analysis, Proc. 12th IEEE Computer Security Foundations Workshop, IEEE Computer Society Press, June 1999.
14. N. Heintze, J.D. Tygar, A Model for Secure Protocols and their Composition, IEEE Transactions on Software Engineering, 22(1): 16-30, January 1996.
15. A. Yasinsac, Dynamic Analysis of Security Protocols, Proceedings of New Security Paradigms 2000 Workshop, Sept 18-21, Ballycotton, Ireland, pp. 77-87, 2000.
16. A. Yasinsac, An Environment for Security Protocol Intrusion Detection, Journal of Computer Security, January 2002.
17. P. Syverson, A Taxonomy of Replay Attacks, Proceedings of the Computer Security Foundations Workshop VII, Franconia NH, IEEE Computer Science Press, 1994.
18. PortSentry, by Psionic Technologies.
19. A. Somayaji, S. Forrest, Automated Response using System-Call Delays, 9th USENIX Security Symposium, 2000.
20. The LaBrea Project, Sourceforge, http://labrea.sourceforge.net.
21. R. Sekar, A. Gupta, J. Frullo, T. Shanbhag, A. Tiwari, H. Yang, S. Zhou, Specification-based Anomaly Detection: A New Approach for Detecting Network Intrusions, ACM Computer and Communication Security Conference, 2002.
22. D. Brumley, D. Boneh, Remote Timing Attacks are Practical, 12th USENIX Security Symposium, 2003.
23. B. Canvel, A. Hiltgen, S. Vaudenay, M. Vuagnoux, Password Interception in SSL/TLS Channel, Swiss Federal Institute of Technology (EPFL) - LASEC, Memo, 2003.
24. V. Klima, O. Pokorny, T. Rosa, Czech Technical University in Prague, 2003.
25. D. Bleichenbacher, Chosen Ciphertext Attacks against Protocols based on the RSA Encryption Standard PKCS#1, Proceedings of CRYPTO'98, pp 1-12, 1998.
26. D. Wagner, B. Schneier, Analysis of the SSL 3.0 Protocol, Proceedings of Second USENIX Workshop on Electronic Commerce, USENIX Press, pp. 29-40., November 1996.
27. CERT Vulnerability Note, " OpenSSL servers contain a buffer overflow during the SSL2 handshake process", July 2002.
28. CERT Vulnerability Note, " OpenSSL servers contain a remotely exploitable buffer overflow vulnerability during the SSL3 handshake process", July 2002.