Learning unknown attacks - A start

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 2516, Issue , 2002, Pages 158-176

  Just, James E ^a   Reynolds, James C ^a   Clough, Larry A ^a   Danforth, Melissa ^b   Levitt, Karl N ^b   Maglich, Ryan ^a   Rowe, Jeff ^b  

^a Teknowledge Corporation   (United States)

^b UNIVERSITY OF CALIFORNIA   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

MERCURY (METAL); RANDOM ERRORS; WEB SERVICES; WORLD WIDE WEB;

APPLICATION SERVICES; BUFFER OVERFLOW ATTACKS; CLASS-BASED; INTRUSION TOLERANT SYSTEM; SINGLE STAGE; SOFTWARE FAULT; UNKNOWN ATTACKS; WEB SERVERS;

INTRUSION DETECTION;

EID: 84958977234     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/3-540-36084-0_9     Document Type: Conference Paper

References (19)

1. Schneier, B: Secrets and Lies: Digital Security in a Networked World. John Wiley and Sons, Inc., 2000 206, 210
2. Gray, J., Reuter, A.: Transaction Processing: Concepts and Techniques. Morgan Kaufmann Publishers, San Francisco, CA, 1993 107
3. Lampson, B.: Computer Security in the Real World. Invited essay at 16th Annual Computer Security Applications Conference, 11–15 December, New Orleans, LA, available at http://www.acsac.org/2000/papers/lampson.pdf
4. Just, J.E., et al.: Intelligent Control for Intrusion Tolerance of Critical Application Services. Supplement of the 2001 International Conference on Dependable Systems and Networks, 1–4 July 2001, Gothenburg, SW
5. Reynolds, J., et al.: Intrusion Tolerance for Mission-Critical Services. Proceedings of the 2001 IEEE Symposium on Security and Privacy, May 13–16, 2001, Oakland, CA
6. Reynolds, J., et al.: The Design and Implementation of an Intrusion Tolerant System. Proceedings of the 2002 International Conference on Dependable Systems and Networks, 23–26 June 2002, Washington, DC, pending
7. Ko, Calvin: Logic Induction of Valid Behavior Specifications for Intrusion Detection. IEEE Symposium on Security and Privacy 2000: 142–153
8. Ko, Calvin, Brutch, Paul, et al.: System Health and Intrusion Monitoring Using a Hierarchy of Constraints. Recent Advances in Intrusion Detection 2001: 190–204
9. Balzer, R., and Goldman, N.: Mediating Connectors. Proceedings of the 19th IEEE International Conference on Distributed Computing Systems, Austin, Texas, May 31-June 4, 1999, IEEE Computer Society Press 73-77
10. Strunk, J.D., et al.: Self-securing storage: Protecting data in compromised system. Operating Systems Design and Implementation, San Diego, CA, 23–25 October 2000, USENIX Association, 2000 165–180
11. Ganger, G.R., et al.: Survivable Storage Systems. DARPA Information Survivability Conference and Exposition (Anaheim, CA, 12-14 June 2001), pages 184–195 vol 2. IEEE, 2001
12. Russell, S., Norvig, P,: Artificial Intelligence: A Modern Approach. Prentice Hall, New York, 1995
13. Roesch, M.: Snort Users Manual, Snort Release: 1.8.3. November 6, 2001, available at http://www.snort.org/docs/writing_rules/
14. Krsul, I.V.: Software Vulnerability Analysis. PhD thesis, Purdue University, West Lafayette, IN, May, 1998, p. 17, available at https://www.cerias.purdue.edu/techreports-ssl/public/97-05.pdf
15. Lough, D.L.: A Taxonomy of Computer Attacks with Applications to Wireless Networks. PhD Thesis, Virginia Polytechnic and State University, Blackburg, VA, available at http://scholar.lib.vt.edu/theses/available/etd-04252001-234145/
16. Landwehr, C. E., Bull, A. R., McDermott, J. P., Choi, W. S.: A Taxonomy of Computer Program Security Flaws. ACM Computing Surveys, Volume 26, Number 3, September 1994
17. Richardson, T.W.: The Development of a Database Taxonomy of Vulnerabilities to Support the Study of Denial of Service Attacks. PhD thesis, Iowa State University, 2001
18. Aslam, T.: A Taxonomy of Security Faults in the Unix Operating System. Master's Thesis, Purdue University, Department of Computer Sciences, August 1995. http://citeseer.nj.nec.com/aslam95taxonomy.html
19. Du, W. and Mathur, A.: Categorization of Software Error that Led to Security Breaches. Technical Report 97-09, Purdue University, Department of Computer Science, 1997