An Information Model for Security Integration

Rasheed, Hassan; Chow, Randy

doi:10.1109/ftdcs.2007.12

Cited by 5 publications

(5 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…With new patterns, new application also arises, specially to satisfy this new applications, it is great to be able to provide programmability, reconfigurability and scalability in this sort of device, as great processing speeds can be achieved with small parameters adjustments in the architecture in order to adapt it to an specific purpose application [10,34,35].…”

Section: Introductionmentioning

confidence: 99%

Platforms and Applications in Hardware Security: Trends and Challenges

Moreno¹

2013

IJSIA

View full text Add to dashboard Cite

show abstract

Section: Introductionmentioning

confidence: 99%

Platforms and Applications in Hardware Security: Trends and Challenges

Moreno¹

2013

IJSIA

View full text Add to dashboard Cite

show abstract

“…É inevitável que indivíduos mal intencionados se organizem para criar ataques mais eficientes e inteligentes. Da mesma forma, devem ser criados sistemas integrados de segurança, principalmente conhecendo a importância da integração de serviços de segurança para a melhoria da previsão, detecção e atuação em situações anômalas (RASHEED, CHOW, 2007).…”

Section: Lista De Tabelasunclassified

“…Contudo, os modelos atuais propõem soluções sob um conjunto específico de serviços, desprezando a existência de outros (ZILYS, et al, 2004) (JONSSON, 2006) (RASHEED, CHOW, 2007). O principal objetivo da integração é a possibilidade de melhorar a detecção de intrusão, atuação e prevenção de sistemas computacionais.…”

Section: Lista De Tabelasunclassified

See 1 more Smart Citation

Proposta e implementação de uma Camada de Integração de Serviços de Segurança (CISS) em SoC e multiplataforma.

Pereira¹

View full text Add to dashboard Cite

Computer networks are increasingly complex environments and equipped with new services, users and infrastructure. The information safety and privacy become fundamental to the evolution of these environments. The anonymity, the weakness and other factors often encourage people to create malicious tools and techniques of attacks to information and computer systems. It can generate small inconveniences or even moral and financial damage. Thus, the detection of intrusion combined with other security tools can protect and prevent malicious attacks and anomalies in computer systems. Yet, considering the complexity and robustness of these systems, the security services are not always able to examine and audit the entire information flow, creating points of security failures that can be discovered and explored. Therefore, this PhD thesis proposes, designs, implements and analyzes the performance of an Integrated Security Services Layer (ISSL). So several security services were implemented and integrated to the ISSL such as Firewall, IDS, Antivirus, authentication tools, proprietary tools and cryptography services. Furthermore, the main feature of our ISSL is the creation of a common structure for storing information about incidents in a computer system. This information is considered to be the source of knowledge so that the system of anomaly detection, inserted in the ISSL, can act effectively in the prevention and protection of computer systems by detecting and classifying early anomalous situations. In this sense, behavioral models were created based on the concepts of the Hidden Markov Model (MHMM) and models for analysis of anomalous sequences. The ISSL was implemented in three versions: (i) System-on-Chip (SoC), (ii) JCISS software in Java and (iii) one simulator. Results such as the time performance, occupancy rates, the impact on the detection of anomalies and details of implementation are presented, compared and analyzed in this thesis. The ISSL obtained significant results regarding the detection rates of anomalies using the model MHMM, which are: for known attacks, rates of over 96% were obtained; for partial attacks by a time, rates above 80%, for partial attacks by a sequence, rates were over 96% and for unknown attacks, rates were over 54%. The main contributions of ISSL are the creation of a structure for the security services integration and the relationship and analysis of anomalous occurrences to reduce false positives, early detection and classification of abnormalities and prevention of computer systems. Furthermore, solutions were figured out in order to improve the detection as the sequential model, and features such as subMHMM for learning at real time. Finally, the SoC and Java implementations allowed the evaluation and use of the ISSL in real environments.

show abstract

“…Δπίζεο, ζηε δηεζλή βηβιηνγξαθία αλαθέξεηαη κηα ζεηξά εξγαζηψλ ζρεηηθψλ κε θαηεγνξηνπνίεζε ζπζηεκάησλ εηζβνιψλ, φπσο ζην (Ragsdale, Carver, Humphries, & Pooch, 2000), ην νπνίν ρξεζηκνπνηείηαη αθφκε σο ζχζηεκα αλαθνξάο, ζην (Rasheed & Chow, 2007), ζην (Stakhanova, Basu, & Wong, 2007), , απφ ηηο νπνίεο ζα κπνξνχζε θαλείο λα αληιήζεη αληίζηνηρεο πιεξνθνξίεο.…”

Section: καζνξηζκόο πιεξνθνξηώλ γηα αδσναμίες αζθάιεηαοunclassified

Αποτελεσματική Διοικητική Υποστήριξη Ασφαλείας Δικτύων Και Επικοινωνιών

Πατσός¹

View full text Add to dashboard Cite

ην νπνίν θαηαλνεί ην γεληθόηεξν πεξηβάιινλ ησλ αδπλακηώλ αζθάιεηαο πνπ αλαθαιύπηνληαη από εξγαιεία απηόκαηεο αμηνιόγεζεο επηθηλδπλόηεηαο, βαζκνινγεί ηε ζεκαληηθόηεηά ηνπο κε πξνηππνπνηεκέλν ηξόπν, βξίζθεη θαη ζπζρεηίδεη ηνλ θώδηθα εθκεηάιιεπζεο πνπ ζρεηίδεηαη κε απηέο ηηο αδπλακίεο θαη θαζνξίδεη ηηο απαξαίηεηεο ππνγξαθέο αλίρλεπζεο παξεηζθξήζεσλ. Σέινο, αμηνινγείηαη ε νξζόηεηα ηεο πινπνίεζεο ηνπ IRIS, παξνπζηάδνληαη θαη αμηνινγνύληαη κηα ζεηξά από πεηξακαηηθά δεδνκέλα γηα ηνλ έιεγρν ησλ απνηειεζκάησλ ηνπ ζπζηήκαηνο θαη αμηνινγείηαη ε ιεηηνπξγία ηνπ IRIS ζε πξαγκαηηθό πεξηβάιινλ.

show abstract

An Information Model for Security Integration

Cited by 5 publications

References 11 publications

Platforms and Applications in Hardware Security: Trends and Challenges

Platforms and Applications in Hardware Security: Trends and Challenges

Proposta e implementação de uma Camada de Integração de Serviços de Segurança (CISS) em SoC e multiplataforma.

Αποτελεσματική Διοικητική Υποστήριξη Ασφαλείας Δικτύων Και Επικοινωνιών

Contact Info

Product

Resources

About