IEEE Transactions on Software Engineering - Special issue on computer security and privacy
Intrusion detection
Modeling network intrusion detection alerts for correlation
ACM Transactions on Information and System Security (TISSEC)
Hi-index | 0.00 |
The purpose of this paper is to present intrusion detection systems (IDS) and proposed architecture of the IDS based on partially ordered events and patterns. The article describes problematic of intrusion detection systems and intrusions detection. Furthermore the paper considers concrete design of IDS architecture based on intrusion signatures. The core of the presented architecture is intrusion signature matching through Petri Nets that classify monitored system behavior and determine intrusion of monitored computer system. The paper result is a new detection method and a new architecture of intrusion detection system.