Towards a taxonomy of intrusion-detection systems
Computer Networks: The International Journal of Computer and Telecommunications Networking - Special issue on computer network security
Intrusion detection
A Simple active attack against TCP
SSYM'95 Proceedings of the 5th conference on USENIX UNIX Security Symposium - Volume 5
| Hi-index | 0.24 |
Many security approaches are currently used in organisations. In spite of the widespread use of these security techniques, network intrusion remains a problem. This paper discusses some of the fundamental shortcomings present in access control, cryptography, intrusion detection and firewall technologies. It then presents a security verification technique combining intrusion testing with intrusion detection, and includes a detailed case study of this technique in practice. Finally, we propose a hybrid firewall/intrusion detection framework aimed at mitigating some of the issues raised, as well as describing a system to facilitate automated response.