On mySimon: Holiday Gifts For The Hostess
BNET Business Network:
BNET
TechRepublic
ZDNet

FREE Registration is required

Overview:

Current intrusion detection systems point out suspicious states or events but do not show how the suspicious state or events relate to other states or events in the system. This paper shows how to enrich an IDS alert with information about how those alerts causally lead to or result from other events in the system. By enriching IDS alerts with this type of causal information, one can leverage existing IDS alerts to learn more about the suspected attack. Backward causal graphs can be used to find which host allowed a multi-hop attack (such as a worm) to enter a local network; forward causal graphs can be used to find the other hosts that were affected by the multi-hop attack.

(Is this item miscategorized? Does it need more tags? Let us know.)

Format:PDFSize:213 KB
Date:Jan 2008
Pages:12

Top results from Intrusion Detection Systems

Webcast Six Web Hacker Tricks & The Three Pillars of Web Protection
Webcast Webcast: Security Threats: A Look Ahead to 2009
Webcast Top Tips To Keep Data Under Your Control
White Paper Stopping insider attacks: how organizations can protect their sensitive information
White Paper Take a holistic approach to business-driven security.

» View all Intrusion Detection Systems listings

Top results from Network Security

Download Trial Download: Rational® AppScan® Standard Edition V7.9
White Paper Ricoh Output & Device Management Solutions
White Paper An Overview of the Issues, Concepts, and Solutions to Secure Today's Digital Document Workflow
Webcast Live Webcast: Get Control over SaaS Application Access
White Paper Privileged Access Lifecycle Management: How PALM Refines Strategy for Enterprise IT

» View all Network Security listings

advertisement

White Papers, Webcasts, and Resources

Featured Training Courses

advertisement

Returning users: Log In Here!

Already registered on BNET, TechRepublic, or ZDNet? Simply log in.

Free Membership: Sign Up Now!

Sign up for a free membership today and get instant and unlimited access to one of the largest databases of white papers, webcasts, and casestudies anywhere. Your FREE membership allows you to:

  • Download an unlimited amount of content, including classic and current white papers, case studies, webcasts and more
  • Track content on your chosen topics of interest
  • Receive targeted email alerts when your favorite content is added
  • Save content for future reading
  • Receive our member newsletter

When you register to access this library, you allow us to share your information with companies that produce products or services featured in the library--so that such companies may contact you with information and offers regarding their products and services. This enables us to keep the library a free service. As a library registrant, you will receive a complimentary subscription to the ZDNet white paper newsletter and e-mail Must-Read News Alerts. You can unsubscribe from these at any time. By clicking the Sign up button, you indicate that you agree to our Terms and Conditions and have read and understand our Privacy Policy (updated).