Results 1 -
3 of
3
Insertion, evasion, and denial of service: Eluding network intrusion detection
, 1998
"... \Not everything that is counted counts, and not everything that counts can be counted." ..."
Abstract
-
Cited by 246 (0 self)
- Add to MetaCart
\Not everything that is counted counts, and not everything that counts can be counted."
The Use of Information Retrieval Techniques for Intrusion Detection
- In Proceedings of First International Workshop on the Recent Advances in Intrusion Detection (RAID
, 1997
"... Intrusion detection is a broad problem, and we need a greater range of tools than is currently available. In this article, we report a new approach. We have applied information retrieval techniques to index audit trails. These indexes can be extremely efficient at detecting attacks whose signature i ..."
Abstract
-
Cited by 16 (0 self)
- Add to MetaCart
Intrusion detection is a broad problem, and we need a greater range of tools than is currently available. In this article, we report a new approach. We have applied information retrieval techniques to index audit trails. These indexes can be extremely efficient at detecting attacks whose signature is an unusual combination of events, and they may consume only a very small additional amount of storage. This approach allows the intrusion detection community to adopt a wide range of techniques developed in applications ranging from library science to web search engines.
Techniques for Intrusion Detection
"... Intrusion detection is a broad problem, and we need a greater range of tools than is currently available. In this article, we report a new approach. We have applied information retrieval techniques to index audit trails. These indexes can be extremely efficient at detecting attacks whose signatu ..."
Abstract
- Add to MetaCart
Intrusion detection is a broad problem, and we need a greater range of tools than is currently available. In this article, we report a new approach. We have applied information retrieval techniques to index audit trails. These indexes can be extremely efficient at detecting attacks whose signature is an unusual combination of events, and they may consume only a very small additional amount of storage. This approach allows the intrusion detection community to adopt a wide range of techniques developed in applications ranging from library science to web search engines.
