LAMBDA: A language to model a database for detection of attacks

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 1907, Issue , 2000, Pages 197-216

  Cuppens, Frédéric ^a   Ortalo, Rodolphe ^b  

^a ONERA   (France)

^b NEUROCOM   (France)

Author keywords

[No Author keywords available]

Indexed keywords

COMPUTER CRIME;

DESCRIPTION LANGUAGES; DETECTION OF ATTACKS; INTRUSION DETECTION SYSTEMS; LOGICAL FORMULAS; TARGET COMPUTERS;

INTRUSION DETECTION;

EID: 84944201343     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/3-540-39945-3_13     Document Type: Conference Paper

References (14)

1. Feiertag, R., Kahn, C., Porras, P., Schnackenberg, D., Staniford-Chen, S., Tung, B., “A Common Intrusion Specification Language (CISL)”, Common Intrusion Detection Framework (CIDF) working group, June 11, 1999. 197
2. Debar, H., Huang, M. and Donahoo, D., “Intrusion Detection Exchange Format Data Model”, draft-ietf-idwg-data-model-02.txt, Internet Draft, IDWG, Internet Engineering Task Force, March 7, 2000, work in progress. 197, 201
3. Wood, M., “Intrusion Detection Message Exchange Requirements”, draft-ietf-idwgrequirements- 02.txt, Internet Draft, IDWG, Internet Engineering Task Force, October 21, 1999, work in progress. 197, 201, 205
4. Curry, D., “Intrusion Detection Message Exchange Format Extensible Markup Language (XML) Document Type Definition”, draft-ietf-idwg-idmef-xml-01.txt, Internet Draft, IDWG, Internet Engineering Task Force, March 15, 2000, work in progress. 197, 205
5. W. Baldwin Robert, Su-Kuang: Rule-based Security Checking, Technical report, Programming Systems Research Group, Lab. for Computer Science, MIT, May 1994. 202, 215
6. Zerkle, D. and Levitt, K., “NetKuang – a Multi-Host Configuration Vulnerability Checker”, in 6th USENIX Security Symposium, San Jose, CA, USA, July 1996. 202, 215
7. Ming-Yuh Huang, Thomas W. Wicks, “A Large-scale Distributed Intrusion Detection Framework Based on Attack Strategy Analysis”, First International Workshop on the Recent Advances in Intrusion Detection (RAID’98), Louvain-la-Neuve, Belgium, September 14-16, 1998. 203
8. Sadri, F. and Kowalski, R., “Variants of the event calculus”, Proc. of ICLP, M IT Press, 1995. 203, 204
9. A. Mounji and B. Le Charlier, “Continuous Assessment of a Unix Configuration: Integrating Intrusion Detection and Configuration Analysis”, in Proceedings of the ISOC’97 Symposium on Network and Distributed System Security, San Diego, USA, February 1997. 215
10. A. Mounji, Languages and Tools for Rule-Based Distributed Intrusion Detection, PhD thesis, Computer Science Institute, Universit´e de Namur, Belgium, September 1997. 215
11. Ilgun, K., “USTAT: A real-time intrusion detection system for Unix”, in IEEE Symposium on Security and Privacy, pp. 16-29, 1993. 215
12. Sandeep Kumar, Classification and Detection of Computer Intrusion, Ph.D. thesis, Department of Computer Science, Purdue University, West Lafayette, IN, USA, August 1995. 215
13. Teresa Lunt, “IDES: An intelligent system for detecting intruders”, in Computer Security, Threats and Countermeasures, November 1990. 215
14. Hervé Debar, Marc Dacier and Andreas Wespi, A Revised Taxonomy for Intrusion-Detection Systems, Research Report RZ 3176 (#93222), IBMR esearch, Zurich Research Laboratory, 23 p., October 25, 1999.