Distributed network architecture in the detection of non content based attacks and insider intrusions with analogies taken from biological immune systems

Rafael Vicente Paez Mendez (Director)

Tesis: Tesis doctoral

Resumen

In order to analyze results of anomaly detection methods for Network Intrusion Detection Systems, the DARPA KDD dataset have been widely analyzed but their data are outdated for most kinds of attacks. A software called Spleen designed to get data from a tested network with the same structure of DARPA dataset is introduced. The application is used to complete the dataset with additional features according to an attack analysis. Finally, to show advantages of an extended dataset, two genetic methods in the detection of non-content based attacks are tested

Fecha de lectura	25 jul. 2011
Idioma original	Español
Institución de lectura	Pontificia Universidad Javeriana

Palabras clave

Network Intrusion Detection Systems
NIDS

Citar esto

Documentos

research proposal Ed04
Archivo: application/pdf, 98,3 KB
Tipo: Tesis

Contenido relacionado

Productos
Inefficiency of IDS static anomaly detectors in real-world networks
Producción: Contribución a una revista › Artículo › revisión exhaustiva
Improving network intrusion detection with extended KDD features
Producción: Capítulo del libro/informe/acta de congreso › Contribución a la conferencia › revisión exhaustiva
Detection of non-content based attacks using GA with extended KDD features
Producción: Capítulo del libro/informe/acta de congreso › Contribución a la conferencia › revisión exhaustiva

Distributed network architecture in the detection of non content based attacks and insider intrusions with analogies taken from biological immune systems

Resumen

Palabras clave

Citar esto

Documentos

Contenido relacionado

Productos

Inefficiency of IDS static anomaly detectors in real-world networks

Improving network intrusion detection with extended KDD features

Detection of non-content based attacks using GA with extended KDD features