On network intrusion detection for deployment in the wild

Proceedings of the 2012 IEEE Network Operations and Management Symposium, NOMS 2012

Volumn , Issue , 2012, Pages 253-260

  Kim, Sun Il ^a   Nwanze, Nnamdi ^b   Edmonds, William ^a   Johnson, Blake ^a   Field, Paloma ^a  

^a UNIVERSITY OF ALASKA ANCHORAGE   (United States)

^b BINGHAMTON UNIVERSITY   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

ANOMALY-BASED INTRUSION DETECTION; CHANGING ENVIRONMENT; DETECTING ATTACKS; DETECTION SCHEME; DETECTION SYSTEM; EMBEDDED PLATFORMS; EXISTING SYSTEMS; INTRUSION DETECTION SCHEME; MANAGEMENT COMPLEXITY; MANAGEMENT TASKS; NETWORK INTRUSION DETECTION; NETWORK OPERATIONS; NETWORK-BASED ATTACKS; NETWORKED SYSTEMS; PLUG-AND-PLAY; PROCESSING SPEED; REAL-TIME TRAINING; RELIABLE OPERATION; SECURITY FEATURES; SECURITY MEASURE; STAND-ALONE DEVICES; TRAINING DATA SETS;

INTRUSION DETECTION;

COMPUTER CRIME;

EID: 84864247466     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/NOMS.2012.6211906     Document Type: Conference Paper

References (19)

1. T. H. Ptacek and T. N. Newsham, "Insertion, evasion, and denial of service: Eluding network intrusion detection," in Secure Networks, Inc. 1998.
2. P. G. Neumann and P. A. Poras, "Experiences with emerald to date," in RAID 1999.
3. S. Kim and N. Nwanze, "Noise-resistant network intrusion detection," in the Proc. of IEEE IPCCC, 2008.
4. N. Nwanze and D. Summerville, "Detection of anomalous network packets using lightweight stateless payload inspection," 4th IEEE LCN Workshop on Network Security (WNS) 2008.
5. A. Gupta and R. Sekar, "An approach for detecting self-propagating email using anomaly detection," in International Symp. on Recent Advances in Intrusion Detection 2003.
6. M. Mahoney, "Network traffic anomaly detection based on packet bytes," in 18th ACM Symp. Applied Computing 2003.
7. E. Eskin, A. Arnold, M. Prerau, L. Portnor, and S. Stolfo, "A geometric framework for unsupervised anomaly detection: Detecting intrusions in unlabeled data," in Data Mining for Security App., Kluwer, 2002.
8. C. Kruegel, T. Toth, and E. Kirda, "Service specific anomaly detection for network intrusion detection," in Applied Computing (SAC), ACM Digital Library 2002.
9. K. Labib and V. R. Vemuri, "An application of principal component analysis to the detection and visualization of computer network attacks," Annals of Telecomm., Nov./Dec. 2005.
10. Y. Bouzida and et al, "Efficient intrusion detection using principal. component analysis," www.rennes.enst-bretagne.fr/ fcuppens/ articles/sar04.pdf.
11. C. Taylor and J. Alves-Foss, "Nate- network analysis of anomolous traffic events, a low cost approach," in NSPW 2001.
12. K. Wang, J. J. Parekh, and S. J. Stolfo, "Anagram: A content anomaly detector resistant to mimicry attack," in RAID 2006.
13. N. Nwanze, S. Kim, and D. Summerville, "Packet payload modeling using principal component analysis for network intrusion detection," in the Proc. of IEEE/AFCEA Military Communications Conference 2009.
14. G. Vasiliadis, S. Antonatos, M. Polychronakis, E. P. Markatos, and S. Ioannidis, "Gnort: High performance network intrusion detection using graphics processors," in Springer RAID '08.
15. M. Roesch, "Snort - lightweight intrusion detection for networks," http://www.snort.org/docs/lisapaper.txt.
16. A. Tongaonkar, S. Vasudevan, and R. Sekar, "Fast packet classification for snort by native compilation of rules," in the Proc. of the USENIX 22nd conference on Large installation system administration conference 2008.
17. F. Maggi, W. Robertson, C. Kruegel, and G. Vigna, "Protecting a moving target: Addressing web application concept drift," in RAID 2009.
18. S. Kim, N. Nwanze, and J. Kintner, "Towards dynamic selftuning for intrusion detection systems," in the Proc. of IEEE IPCCC, 2010.
19. LinkLogger, http://www.linklogger.com.