標題: Intrusion detection markup language (IDML) and IDML based intrusion detection model
作者: Lin, YT
Tseng, SS
Lin, SC
資訊工程學系
Department of Computer Science
關鍵字: intrusion detection;intrusion pattern;IDML;XML;finite state machine
公開日期: 2001
摘要: Due to the rapid growth of networked computer resources and the increasing importance of related applications, intrusions which threaten the infrastructure of these applications become critical problems today. In recent years, several intrusion detection systems have been proposed designed to identify and detect possible intrusion behaviors, In this work, an intrusion detection model is proposed to build an intrusion detection system which can solve the issues for building intrusion detection system, including Pattern representation, Computability, Performance, Extendibility and Maintenance. In the model, IDML is first designed to express intrusion pattern, and these patterns will be transformed into intrusion pattern state machines. Once the intrusion pattern state machines are obtained, the corresponding intrusion detection mechanism which can use these state machines to detect intrusions is designed. To evaluate the performance of our model, an IDML-based intrusion detection experimental system based upon the architecture is implemented, and finally some concluding remarks are given.
URI: http://hdl.handle.net/11536/19039
ISBN: 980-07-7541-2
期刊: WORLD MULTICONFERENCE ON SYSTEMICS, CYBERNETICS AND INFORMATICS, VOL 1, PROCEEDINGS: INFORMATION SYSTEMS DEVELOPMENT
起始頁: 56
結束頁: 61
顯示於類別:會議論文