A model for the semantics of attack signatures in misuse detection systems

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 3225, Issue , 2004, Pages 158-169

  Meier, Michael ^a  

^a BRANDENBURG UNIVERSITY OF TECHNOLOGY   (Germany)

Author keywords

[No Author keywords available]

Indexed keywords

COMPUTATIONAL LINGUISTICS; SECURITY OF DATA; SECURITY SYSTEMS; SEMANTICS; SPECIFICATION LANGUAGES; SPECIFICATIONS;

ATTACK SIGNATURE; MISUSE DETECTION SYSTEMS;

NETWORK SECURITY;

EID: 35048883095     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/978-3-540-30144-8_14     Document Type: Article

References (13)

1. Eckmann, St. T.; Vigna, G.; Kemmerer, R. A.: STATL: an Attack Language for State-based Intrusion Detection, in Proc. of the ACM Workshop on Intrusion Detection, Athens, Greece, November 2000.
2. Michel, C.; Me, L.: ADeLe: an Attack Description Language for Knowledge-based Intrusion Detection, in Proc. of the Internat. Conference on Information Security, Kluwer, June 2001.
3. Cuppens, F.; Ortalo, R.: LAMBDA: A Language to Model a Database for Detection of Attacks. In: Proc. of the Third International Workshop on Recent Advances in Intrusion Detection, LNCS 1907, Springer, 2000, pp. 197-216.
4. Pouzol, J.-P.; Ducassé, M.: From Declarative Signatures to Misuse IDS. In: Proc. of the Fourth International Symposium on Recent Advances in Intrusion Detection, LNCS 2212, Springer, 2001, pp. 1-21.
5. Meier, M.; Bischof, N.; Holz, T.: SHEDEL - A Simple Hierarchical Event Description Language for Specifying Attack Signatures. In: Proc. of the 17th International Conference on Information Security. Kluwer, 2002, pp. 559-571.
6. Zimmer, D.: A Meta-Model for the Definition of the Semantics of Complex Events in Active Database Management Systems (in German). PhD Thesis, University of Paderborn, Shaker-Verlag, ISBN: 3-8265-3744-0, 1998.
7. Zimmer, D.; Unland, R.: On the Semantics of Complex Events in Active Database Management Systems. In Proc. of the 15th International Conference on Data Engineering, IEEE Computer Society Press, 1999, pp. 392-399.
8. Vigna, G.; Eckmann, S. T.; Kemmerer, R. A.: Attack Languages, in: Proc. of the IEEE Information Survivability Workshop, Boston, MA, October 2000.
9. Kumar, S.: Classification and Detection of Computer Intrusions, PhD Thesis, Purdue University, 1995.
10. Dayal, U.; Buchmann, A.; Chakravarthy, S.: The HiPAC Project. In: Active Database Systems. Morgan Kaufmann, ISBN: 1-55860-304-2, 1996.
11. Chakravarthy, S.; Krishnaprasad, V; Anwar, E.; Kim, S.: Composite Events for Active Databases: Semantics, Contexts and Detection. In Proc. of the 20th International Conference on Very Large Databases, 1994, pp. 606-617.
12. Collet, C.; Coupaye, T.: Composite Events in NAOS. In Proc. of the seventh International Conference on Database and Expert Systems Applications. 1996, pp. 475-481.
13. Berndtsson, M.: ACCOD: An approach to an Active Object-Oriented DBMS. Master thesis, University of Skövde, 1991.