Intrusion detection
Application-Integrated Data Collection for Security Monitoring
RAID '00 Proceedings of the 4th International Symposium on Recent Advances in Intrusion Detection
The Specification and Enforcement of Advanced Security Policies
POLICY '02 Proceedings of the 3rd International Workshop on Policies for Distributed Systems and Networks (POLICY'02)
Information Assurance: Dependability and Security in Networked Systems
Information Assurance: Dependability and Security in Networked Systems
Network Security: Know It All: Know It All
Network Security: Know It All: Know It All
Architecture for data collection in database intrusion detection systems
SDM'07 Proceedings of the 4th VLDB conference on Secure data management
| Hi-index | 0.01 |
Current intrusion detection systems work in isolationfrom access control for the application the systems aim toprotect. The lack of coordination and inter-operation betweenthese components prevents detecting and respondingto ongoing attacks in real time, before they cause damage.To address this, we apply dynamic authorization techniquesto support fine-grained access control and application levelintrusion detection and response capabilities. This paperdescribes our experience withintegrationof the Generic Authorizationand Access Control API (GAA-API) to providedynamic intrusion detection and response for the ApacheWeb Server. The GAA-API is a generic interface which maybe used to enable such dynamic authorization and intrusionresponse capabilities for many applications.