A prototype real-time intrusion-detection expert system

Authors:
Teresa F. Lunt;R. Jagannathan
Affiliations:
Computer Science Laboratory, SRI International, Menlo Park, California;Computer Science Laboratory, SRI International, Menlo Park, California
Venue:
SP'88 Proceedings of the 1988 IEEE conference on Security and privacy
Year:
1988

Citing 2
Cited 6

An Intrusion-Detection Model

IEEE Transactions on Software Engineering - Special issue on computer security and privacy
Operating system penetration

AFIPS '75 Proceedings of the May 19-22, 1975, national computer conference and exposition

Security applications of trust in multi-agent systems

Journal of Computer Security
Intrusion detection with mobile agents

Computer Communications
A variable-length model for masquerade detection

Journal of Systems and Software
Turtles all the way down: a clean-slate, ground-up, first-principles approach to secure systems

Proceedings of the 2012 workshop on New security paradigms
Fuzzy particle swarm optimization for intrusion detection

ICONIP'12 Proceedings of the 19th international conference on Neural Information Processing - Volume Part V
Principles of authentication

Proceedings of the 2013 workshop on New security paradigms workshop

Quantified Score

Hi-index	0.00

Visualization

Abstract

This paper describes the design and implementation of a prototype intrusion-detection expert system (IDES) developed at SRI International. IDES is based on the concept that an intrusion manifests itself as a departure from expected behavior for a user. The prototype monitors users on a remote system using audit records which characterize their activities. It adaptively learns normal behavior of each user and detects and reports anomalous user behavior in real-time.