Research Catalog

Intrusion detection in distributed systems : an abstraction-based approach

Title
Intrusion detection in distributed systems : an abstraction-based approach / by Peng Ning, Sushil Jajodia, X. Sean Wang.
Author
Ning, Peng.
Publication
Boston : Kluwer Academic Publishers, 2004.

Items in the Library & Off-site

Filter by

1 Item

StatusFormatAccessCall NumberItem Location
Request for On-site UseRequest Scan
How do I pick up this item and when will it be ready?
TextRequest in advance TK5105.59 .N35 2004Off-site

Holdings

Details

Additional Authors
  • Jajodia, Sushil.
  • Wang, Sean, 1960-
Description
xvi, 136 pages; 24 cm.
Summary
"Intrusion Detection in Distributed Systems: An Abstraction-Based Approach presents research contributions in three areas with respect to intrusion detection in distributed systems. The first contribution is an abstraction-based approach to addressing heterogeneity and autonomy of distributed environments. The second contribution is a formal framework for modeling requests among cooperative IDSs and its application to Common Intrusion Detection Framework (CIDF). The third contribution is a novel approach to coordinating different IDSs for distributed event correlation." "Intrusion Detection in Distributed Systems: An Abstraction-Based Approach is designed for a professional audience, composed of researchers and practitioners in industry. This book is also suitable as a secondary text for graduate-level students in computer science and electrical engineering."--BOOK JACKET.
Series Statement
Advances in information security ; 9
Uniform Title
Advances in information security ; 9.
Subjects
Bibliography (note)
  • Includes bibliographical references (p. 127-133) and index.
Contents
1. Introduction -- 2. An Overview of Related Research -- 3. System View and Event History -- 4. Modeling Request Among Cooperating Intrusion Detection Systems -- 5. Extending Common Intrusion Detection Framework (CIDF) to Support Queries -- 6. A Hierarchical Model for Distributed Attacks -- 7. Decentralized Detection of Distributed Attacks -- 8. CARDS: An Experimental System for Detecting Distributed Attacks -- 9. Conclusion -- App. A. Document Type Definitions (DTDs) Used in CARDS -- App. B. Sample System Views, Signatures and Detection Tasks in CARDS.
ISBN
140207624X (alk. paper)
LCCN
  • 2003055885
  • R0-405211
OCLC
  • 52970578
  • ocm52970578
  • SCSB-5149929
Owning Institutions
Columbia University Libraries