Detection workload in a dynamic grid-based intrusion detection environment
Journal of Parallel and Distributed Computing
Computer forensics in forensis
ACM SIGOPS Operating Systems Review
A mission-impact-based approach to INFOSEC alarm correlation
RAID'02 Proceedings of the 5th international conference on Recent advances in intrusion detection
PPIDS: privacy preserving intrusion detection system
PAISI'07 Proceedings of the 2007 Pacific Asia conference on Intelligence and security informatics
Intrusion detection based on data mining
ICIC'06 Proceedings of the 2006 international conference on Intelligent computing: Part II
Exploring discrepancies in findings obtained with the KDD Cup '99 data set
Intelligent Data Analysis
METAL – a tool for extracting attack manifestations
DIMVA'05 Proceedings of the Second international conference on Detection of Intrusions and Malware, and Vulnerability Assessment
Divided two-part adaptive intrusion detection system
Wireless Networks
Hi-index | 0.00 |
eXpert-BSM is a real time forward-reasoning expert systemthat analyzes Sun Solaris audit trails. Based on manyyears of intrusion detection research, eXpert-BSM's knowledgebase detects a wide range of specific and general formsof misuse, provides detailed reports and recommendationsto the system operator, and has a low false-alarm rate.Host-based intrusion detection offers the ability to detectmisuse and subversion through the direct monitoring of processesinside the host, providing an important complementto network-based surveillance. Suites of eXpert-BSMs maybe deployed throughout a network, and their alarms managed,correlated, and acted on by remote or local subscribingsecurity services, thus helping to address issues of decentralizedmanagement. Inside the host, eXpert-BSM isintended to operate as a true security daemon for host systems,consuming few CPU cycles and very little memoryand secondary storage. eXpert-BSM has been availablefor download on the Internet since April 2000, and has beensuccessfully deployed in several production environments.