An analysis of signature overlaps in Intrusion Detection Systems

Authors:
Frederic Massicotte;Yvan Labiche
Affiliations:
Communications Research Centre Canada, Ottawa, Canada;Software Quality Engineering Laboratory, Department of Systems and Computer Engineering, Carleton University, Ottawa, Canada
Venue:
DSN '11 Proceedings of the 2011 IEEE/IFIP 41st International Conference on Dependable Systems&Networks
Year:
2011

Citing 0
Cited 1

A self-tuning self-optimizing approach for automated network anomaly detection systems

Proceedings of the 9th international conference on Autonomic computing

Quantified Score

Hi-index	0.00

Visualization

Abstract

An Intrusion Detection System (IDS) protects computer networks against attacks and intrusions, in combination with firewalls and anti-virus systems. One class of IDS is called signature-based network IDSs, as they monitor network traffic, looking for evidence of malicious behaviour as specified in attack descriptions (referred to as signatures).