Recent Advances in Intrusion Detection Third International Workshop, RAID 2000 Toulouse, France, October 2–4, 2000 Proceedings / [electronic resource] :
edited by Hervé Debar, Ludovic Mé, S. Felix Wu.
- Berlin, Heidelberg : Springer Berlin Heidelberg, 2000.
- X, 230 p. online resource.
- Lecture Notes in Computer Science, 1907 0302-9743 ; .
- Lecture Notes in Computer Science, 1907 .
Logging -- Better Logging through Formality -- A Pattern Matching Based Filter for Audit Reduction and Fast Detection of Potential Intrusions -- Transaction-Based Pseudonyms in Audit Data for Privacy Respecting Intrusion Detection -- Data Mining -- A Data Mining and CIDF Based Approach for Detecting Novel and Distributed Intrusions -- Using Finite Automata to Mine Execution Data for Intrusion Detection: A Preliminary Report -- Modeling Process Behavior -- Adaptive, Model-Based Monitoring for Cyber Attack Detection -- A Real-Time Intrusion Detection System Based on Learning Program Behavior -- Intrusion Detection Using Variable-Length Audit Trail Patterns -- Flexible Intrusion Detection Using Variable-Length Behavior Modeling in Distributed Environment: Application to CORBA Objects -- IDS Evaluation -- The 1998 Lincoln Laboratory IDS Evaluation -- Analysis and Results of the 1999 DARPA Off-Line Intrusion Detection Evaluation -- Using Rule-Based Activity Descriptions to Evaluate Intrusion-Detection Systems -- Modeling -- LAMBDA: A Language to Model a Database for Detection of Attacks -- Target Naming and Service Apoptosis.
Since 1998, RAID has established its reputation as the main event in research on intrusion detection, both in Europe and the United States. Every year, RAID gathers researchers, security vendors and security practitioners to listen to the most recent research results in the area as well as experiments and deployment issues. This year, RAID has grown one step further to establish itself as a well-known event in the security community, with the publication of hardcopy proceedings. RAID 2000 received 26 paper submissions from 10 countries and 3 continents. The program committee selected 14 papers for publication and examined 6 of them for presentation. In addition RAID 2000 received 30 extended abstracts proposals; 15 of these extended abstracts were accepted for presentation. - tended abstracts are available on the website of the RAID symposium series, http://www.raid-symposium.org/. We would like to thank the technical p- gram committee for the help we received in reviewing the papers, as well as all the authors for their participation and submissions, even for those rejected. As in previous RAID symposiums, the program alternates between fun- mental research issues, such as newtechnologies for intrusion detection, and more practical issues linked to the deployment and operation of intrusion det- tion systems in a real environment. Five sessions have been devoted to intrusion detection technology, including modeling, data mining and advanced techniques.
9783540399452
10.1007/3-540-39945-3 doi
Computer science.
Computer Communication Networks.
Operating systems (Computers).
Data encryption (Computer science).
Information Systems.
Computer Science.
Computer Communication Networks.
Management of Computing and Information Systems.
Computers and Society.
Data Encryption.
Operating Systems.
TK5105.5-5105.9
004.6
Logging -- Better Logging through Formality -- A Pattern Matching Based Filter for Audit Reduction and Fast Detection of Potential Intrusions -- Transaction-Based Pseudonyms in Audit Data for Privacy Respecting Intrusion Detection -- Data Mining -- A Data Mining and CIDF Based Approach for Detecting Novel and Distributed Intrusions -- Using Finite Automata to Mine Execution Data for Intrusion Detection: A Preliminary Report -- Modeling Process Behavior -- Adaptive, Model-Based Monitoring for Cyber Attack Detection -- A Real-Time Intrusion Detection System Based on Learning Program Behavior -- Intrusion Detection Using Variable-Length Audit Trail Patterns -- Flexible Intrusion Detection Using Variable-Length Behavior Modeling in Distributed Environment: Application to CORBA Objects -- IDS Evaluation -- The 1998 Lincoln Laboratory IDS Evaluation -- Analysis and Results of the 1999 DARPA Off-Line Intrusion Detection Evaluation -- Using Rule-Based Activity Descriptions to Evaluate Intrusion-Detection Systems -- Modeling -- LAMBDA: A Language to Model a Database for Detection of Attacks -- Target Naming and Service Apoptosis.
Since 1998, RAID has established its reputation as the main event in research on intrusion detection, both in Europe and the United States. Every year, RAID gathers researchers, security vendors and security practitioners to listen to the most recent research results in the area as well as experiments and deployment issues. This year, RAID has grown one step further to establish itself as a well-known event in the security community, with the publication of hardcopy proceedings. RAID 2000 received 26 paper submissions from 10 countries and 3 continents. The program committee selected 14 papers for publication and examined 6 of them for presentation. In addition RAID 2000 received 30 extended abstracts proposals; 15 of these extended abstracts were accepted for presentation. - tended abstracts are available on the website of the RAID symposium series, http://www.raid-symposium.org/. We would like to thank the technical p- gram committee for the help we received in reviewing the papers, as well as all the authors for their participation and submissions, even for those rejected. As in previous RAID symposiums, the program alternates between fun- mental research issues, such as newtechnologies for intrusion detection, and more practical issues linked to the deployment and operation of intrusion det- tion systems in a real environment. Five sessions have been devoted to intrusion detection technology, including modeling, data mining and advanced techniques.
9783540399452
10.1007/3-540-39945-3 doi
Computer science.
Computer Communication Networks.
Operating systems (Computers).
Data encryption (Computer science).
Information Systems.
Computer Science.
Computer Communication Networks.
Management of Computing and Information Systems.
Computers and Society.
Data Encryption.
Operating Systems.
TK5105.5-5105.9
004.6