A new two‐tiered strategy to intrusion detection

Sodiya, Adesina S.; Longe, H. O. D.; Akinwale, Adio T.

doi:10.1108/09685220410518810

“…The three security goals of computer system are Confidentiality, Integrity and Availability. These goals are commonly referred as the CIA of computer security (Sodiya, Longe, & Akinwale, 2004) and these goals also apply to computer systems.…”

Section: Software Security Goalsmentioning

confidence: 99%

Towards Building Secure Software Systems

Sodiya¹,

Onashoga²,

Ajayi³

2006

InSITE Conference

3

0

View full text Add to dashboard Cite

Software security breaches are now very extremely common and a larger percentage is caused by software design defects. Since individuals and organizations now completely depend on software systems for their day-to-day operations, it is then important to produce secure software products. This paper discusses the problems of producing secure software products and provides a model for improving software security. The model -Secure Software Development Model (SSDM), is unified model that integrates security engineering with software engineering so as to ensure effective production of secure software products. Supporting structure in form of laws is also presented to guide developers throughout the development process. We then present our experience that validates the model.

show abstract

“…Intrusion detection systems (IDSs) are security tools that are used to detect traces of malicious activities which are targeted against networks and their resources (Toth and Kruegel, 2002). According to Sodiya et al (2004), intrusion detection systems are systems that detect internal and external attack on computer systems and undertake some measures to eliminate them. An Intrusion Detection System (IDS) does not only helps the administrators to detect intrusions and limit damages, but also helps to identify the source of attacks, which sometimes acts as a deterrent, especially in case of insider attacks (Wang et al, 2006).…”

Section: Introductionmentioning

confidence: 99%

An Expert System-Based Site Security Officer

Sodiya¹,

Ikuomola²,

Adeniran³

2007

CIT

2

0

View full text Add to dashboard Cite

A Site Security Officer (SSO) who is a network security staff that responds to alarms from an Intrusion Detection System (IDS), is always faced with the critical problem of low response time when the network becomes big. Even a skilled SSO is hard-pressed and less productive when collecting and analyzing IDS output manually as the frequency of intrusion increases. In this work, an Expert System-based SSO (ExSSO) is designed to correct this problem. The design presents an architecture that encodes associated expert rules for responding to different categories of intrusions into its rule-based component. The Intrusion Index (II), which determines the extent of intrusion, is calculated to classify intrusions into three categories namely low, high and very high. The inference engine component utilizes the encoded rules to interpret and respond to intrusions based on the Intrusion Index. Visual Basic 6.0 is used to implement the design because of its interactiveness and high ability to support database. Testing the new design with data from three different network environments, the result shows a system that can investigate and respond to an average of 57 intrusions per minute as against the maximum response time of 2 per three minutes in human-based SSO.

show abstract

“…These goals are commonly referred as the CIA of computer security (Sodiya, Longe, & Akinwale, 2004) and these goals also apply to computer systems.…”

Section: Software Security Goalsmentioning

confidence: 99%

Towards Building Secure Software Systems

Sodiya¹,

Onashoga²,

Ajayi³

2006

IISIT

View full text Add to dashboard Cite

Software security breaches are now very extremely common and a larger percentage is caused by software design defects. Since individuals and organizations now completely depend on software systems for their day-to-day operations, it is then important to produce secure software products. This paper discusses the problems of producing secure software products and provides a model for improving software security. The model -Secure Software Development Model (SSDM), is unified model that integrates security engineering with software engineering so as to ensure effective production of secure software products. Supporting structure in form of laws is also presented to guide developers throughout the development process. We then present our experience that validates the model.

show abstract

A new two‐tiered strategy to intrusion detection

Cited by 14 publications

References 10 publications

Towards Building Secure Software Systems

Towards Building Secure Software Systems

An Expert System-Based Site Security Officer

Towards Building Secure Software Systems

Contact Info

Product

Resources

About