A Proposal of Protocol and Policy-Based Intrusion Detection System
Currently, intrusion detection systems (IDSs) are widely deployed in enterprise networks for detecting network attacks. Most existing commercial IDSs are based on misuse detection model. In misuse detection, although known attacks can be detected, unknown ones cannot be detected because attack signa...
| Main Authors: | , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
International Institute of Informatics and Cybernetics
2004-06-01
|
| Series: | Journal of Systemics, Cybernetics and Informatics |
| Subjects: | |
| Online Access: | http://www.iiisci.org/Journal/CV$/sci/pdfs/P667515.pdf
|
| _version_ | 1819210797055737856 |
|---|---|
| author | Tatsuya Baba Shigeyuki Matsuda |
| author_facet | Tatsuya Baba Shigeyuki Matsuda |
| author_sort | Tatsuya Baba |
| collection | DOAJ |
| description | Currently, intrusion detection systems (IDSs) are widely deployed in enterprise networks for detecting network attacks. Most existing commercial IDSs are based on misuse detection model. In misuse detection, although known attacks can be detected, unknown ones cannot be detected because attack signatures for unknown attacks cannot be generated. In this paper, we propose a method for detecting network attacks including unknown ones against servers such as web servers, mail servers, FTP servers, and DNS servers, using protocol specifications and site access policy. Furthermore, we propose a method to predict damage from detected attacks using neural networks. |
| first_indexed | 2024-12-23T06:16:53Z |
| format | Article |
| id | doaj.art-fe74aff7f61345d888be60f2e4b63845 |
| institution | Directory Open Access Journal |
| issn | 1690-4524 |
| language | English |
| last_indexed | 2024-12-23T06:16:53Z |
| publishDate | 2004-06-01 |
| publisher | International Institute of Informatics and Cybernetics |
| record_format | Article |
| series | Journal of Systemics, Cybernetics and Informatics |
| spelling | doaj.art-fe74aff7f61345d888be60f2e4b638452022-12-21T17:57:16ZengInternational Institute of Informatics and CyberneticsJournal of Systemics, Cybernetics and Informatics1690-45242004-06-01235762A Proposal of Protocol and Policy-Based Intrusion Detection SystemTatsuya Baba0Shigeyuki Matsuda1 NTT Data Corporation NTT Data Corporation Currently, intrusion detection systems (IDSs) are widely deployed in enterprise networks for detecting network attacks. Most existing commercial IDSs are based on misuse detection model. In misuse detection, although known attacks can be detected, unknown ones cannot be detected because attack signatures for unknown attacks cannot be generated. In this paper, we propose a method for detecting network attacks including unknown ones against servers such as web servers, mail servers, FTP servers, and DNS servers, using protocol specifications and site access policy. Furthermore, we propose a method to predict damage from detected attacks using neural networks.http://www.iiisci.org/Journal/CV$/sci/pdfs/P667515.pdf Neural NetworkIntrusion DetectionDamage PredictionIDSNetwork Security |
| spellingShingle | Tatsuya Baba Shigeyuki Matsuda A Proposal of Protocol and Policy-Based Intrusion Detection System Journal of Systemics, Cybernetics and Informatics Neural Network Intrusion Detection Damage Prediction IDS Network Security |
| title | A Proposal of Protocol and Policy-Based Intrusion Detection System |
| title_full | A Proposal of Protocol and Policy-Based Intrusion Detection System |
| title_fullStr | A Proposal of Protocol and Policy-Based Intrusion Detection System |
| title_full_unstemmed | A Proposal of Protocol and Policy-Based Intrusion Detection System |
| title_short | A Proposal of Protocol and Policy-Based Intrusion Detection System |
| title_sort | proposal of protocol and policy based intrusion detection system |
| topic | Neural Network Intrusion Detection Damage Prediction IDS Network Security |
| url | http://www.iiisci.org/Journal/CV$/sci/pdfs/P667515.pdf
|
| work_keys_str_mv | AT tatsuyababa aproposalofprotocolandpolicybasedintrusiondetectionsystem AT shigeyukimatsuda aproposalofprotocolandpolicybasedintrusiondetectionsystem AT tatsuyababa proposalofprotocolandpolicybasedintrusiondetectionsystem AT shigeyukimatsuda proposalofprotocolandpolicybasedintrusiondetectionsystem |