Wired and wireless intrusion detection system: Classifications, good characteristics and state-of-the-art

Computer Standards and Interfaces

Volumn 28, Issue 6, 2006, Pages 670-694

  Sobh, Tarek S ^a  

^a Information System Department   (Egypt)

Author keywords

Host based security; Intrusion detection system; Intrusion prevention systems; Network based security; Sniffering; Wireless network

Indexed keywords

CODES (STANDARDS); COMPUTER SOFTWARE; REAL TIME SYSTEMS; RISK ASSESSMENT; SCANNING; SECURITY OF DATA;

INTRUSION DETECTION SYSTEM (IDS); INTRUSION PREVENTION SYSTEMS (IPS); SOFTWARE SCANNER;

WIRELESS TELECOMMUNICATION SYSTEMS;

EID: 33746150390     PISSN: 09205489     EISSN: None     Source Type: Journal    
DOI: 10.1016/j.csi.2005.07.002     Document Type: Article

References (34)

1. CCIMB. Common Criteria for Information Technology Security Version 2.1: Part 1: Introduction and General Model, CCIMB-99-031, Evaluation (1999)
2. DeMara R.F., and Rocke A.J. Mitigation of network tampering using dynamic dispatch of mobile agents. Computers and Security vol. 23 (2004) 31-42. http:www.elsevier.com/locate/cose www.elsevier.com/locate/cose
3. Fyodor Y. 'SNORTNET'-A Distributed Intrusion Detection System (2000 (June)). http://snortnet.scorpions.net/snortnet.pdf Available from: http://snortnet.scorpions.net/snortnet.pdf
4. Viega J., and McGraw G. Building Secure Software: How to Avoid Security Problems the Right Way (2002), Addison Wesley
5. Cho S.B. Incorporating soft computing techniques into a probabilistic intrusion detection system. IEEE Transactions on Systems, Man, and Cybernetics-Part C:Applications and Reviews 32 2 (2002) 154-160
6. Shipley G. Chapter 12 "Intrusion Detection Systems (IDSs)". In: Markunday S.J. (Ed). Maximum Security: A Hacker's Guide To Protecting Your Internet Site And Network. third edition (2001), Sams Publisher, Indiana
7. Ye N., and Chen Q. Profile-based information fusion for intrusion detection. Proceedings of the 2001 IEEE Workshop on Information Assurance and Security (2001) 227-230
8. Kemmerer R.A., and Vigna G. Intrusion detection: a brief history and overview. Reliable Software Group, Computer Science Department, University of California Santa Barbara. Supplement to Computer Security and Privacy (2002) 27-30
9. Oh S.H., and Lee W.S. An anomaly intrusion detection method by clustering normal user behavior. Computers & Security 22 7 (2003) 596-612
10. Mirkovic J., Prier G., and Reiher P. Attacking DDoS at the source. Proceedings of ICNP 2002, Paris, France (2002) 312-321
11. Talpade R.R., Kim G., and Khurana S. NOMAD: Traffic-based network monitoring framework for anomaly detection. Proceedings of the Fourth IEEE Symposium on Computers and Communications (1998)
12. Yang J., Ning P., Wang X., and Jajodia S. CARDS: a distributed system for detecting coordinated attacks. In: Qing S., and Elof J.H.P. (Eds). Proceedings of IFIP TC11 Sixteenth Annual Working Conference on Information Security (SEC 2000) (2000), Kluwer Academic Publishers
13. Cabrera J.B.D., Lewis L., Qin X., Lee W., Prasanth R., Ravichandran K., and Mehra B. Proactive detection of distributed denial of service attacks using MIB traffic variables-a feasibility study. Proceedings of the 7th IFIP/IEEE International Symposium on Integrated Network Management, Seattle, WA, May 14-18 (2001)
14. Huang Y., and Pullen J.M. Countering denial of service attacks using congestion triggered packet sampling and filtering. Proceedings of the 10th International Conference on Computer Communications and Networks (2001)
15. Lee W., and Stolfo S.J. Data mining approaches for intrusion detection. Proceedings of the 7th USENIX Security Symposium, San Antonio, TX (1998 (January)) 79-93
16. Chari S.N., and Cheng P. BlueBoX: A Policy-Driven, Host-Based Intrusion Detection System ACM Transactions on Information and System Security vol. 6, No. 2 (2003 (May))
17. Lee W., Stolfo S.J., and Mok K.W. A data mining framework for building intrusion detection models. Proceedings of the 1999 IEEE Symposium on Security and Privacy, Oakland, CA (1999 (May 9-12)) 120-132
18. Gil T.M., and Poleto M. MULTOPS: a data-structure for bandwidth attack detection. Proceedings of 10th Usenix Security Symposium, Washington, DC (2001 (August 13-17)) 23-38
19. Lin J., Wang X.S., and Jajodia S. Abstraction-based misuse detection: high-level specification and adaptable strategies. Proceedings of the 11th Computer Security Foundation Workshop (Rockport, MA, June) (1998) 190-201
20. Forrest S., Hofmeyr S., and Somayaji A. Computer immunology. Comm. of the ACM vol. 40 no. 10 (1997 (October)) 88-96
21. Ingram D.J., Kremer H.S., and Rowe N.C. Distributed intrusion detection for computer systems using communicating agents. Sixth International Symposium on Research and Technology on Command and Control, Annapolis, MD (2001 (June))
22. Julisch K. Clustering intrusion detection alarms to support root cause analysis. ACM Transactions on Information and System Security 6 4 (2003) 443-471
23. Han S., and Cho S. Detecting intrusion with rule-based integration of multiple models. Computers & Security 22 7 (2003) 613-623
24. Lazarevic A., Ertoz L., Kumar V., Ozgur A., and Srivastava J. A comparative study of anomaly detection schemes in network intrusion detection. Proceedings of Third SIAM Conference on Data Mining (2003)
25. PMG. Maximizing the Value of Network Intrusion Detection, A Corporate White Paper from the Product Management Group of Intrusion.com (2001)
26. Dietrich S., Long N., and Dittrich D. Analyzing distributed denial of service tools: the shaft case. Proceedings of 14th Systems Administration Conference (LISA 2000), New Orleans, Louisiana, USA (2000)
27. Gong F., and Scientist C. Next Generation Intrusion Detection Systems (IDS), White paper, McAfee Network Security Technologies Group (2002 (March))
28. Zhang Y., Lee W., and Huang Y. Intrusion detection techniques for mobile wireless networks. ACM Wireless Networks 9 (2003) 545-556
29. AirMagnet. Best Practices for Securing Your WLAN (2004). http://www.airmagnet.com http://www.airmagnet.com
30. H. Debar, M. Dacier, A. Wespi, S. Lampart, An Experimentation Workbench for Intrusion Detection Systems, Research Report RZ 2998, IBM Research Division, Zurich Research Laboratory, 8803 Ruschlikon, Switzerland, March (1998).
31. Lippmann R., and Graf I. Evaluating intrusion detection systems: the 1998 DARPA Off-line intrusion detection evaluation. Proceedings of DARPA Information Survivability Conference and Exposition, DISCEX'OO, Jan 25-27, Hilton Head, SC (2000)
32. Puketza N., Zhang K., Chung M., Mukherjee B., and Olsson R. A methodology for testing intrusion detection systems. IEEE Transactions on Software Engineering 22 10 (1996 (Oct)) 719-729
33. Heberlein T., Dias G., Levit K., Mukherjee B., Wood J., and Wolber D. A network security monitor. Proceedings of the 1990 IEEE Symposium on Research in Security and Privacy (1990) 296-304
34. Shiyong Z., Chengrong W., and Wei G. Network monitoring in broadband. Proceedings of Second International Conference on Web Information Systems Engineering (WISE'01) (2002) 0-7965-1393-X/02 IEEE