An overview of recent advances in intrusion detection

Marhusin, Mohd Fadzli; Cornforth, David; Larkin, Henry

doi:10.1109/cit.2008.4594714

Cited by 10 publications

(6 citation statements)

References 25 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…An multi-agent approach (Marhusin et al, 2008;Sulaiman et al, 2011) offers a more dynamic socialoriented based communications.…”

Section: Multi-agent Systemsmentioning

confidence: 99%

“…Auto update sometime requires software or system reboots that might prohibit user from choosing this option. Alternatively, we require a mechanism such as a detection model which is described in (Marhusin, 2012) to detect any attempts to exploit vulnerable software or system as any code will require execution and/or transmission.…”

Section: Vulnerability Exploitationmentioning

confidence: 99%

See 1 more Smart Citation

A Framework for a Multi-Layered Security of an Automated Programming Code Assessment Tool

Marhusin¹,

Kafli²,

Sulaiman

et al. 2015

Journal of Computer Science

Self Cite

View full text Add to dashboard Cite

In a learning environment, a low student-lecturer ratio is considered a practical solution by many educational institutions. However, the number of students in information technology is increasing every year. This could lead to a significant increase in the workload of lecturers, who need to evaluate assignments, quizzes and projects. Hence, it is desirable that an automated assessment tool is used to lessen their workload. In the era where mobile devices are getting popularity, the high demand to execute suitable quality code is there and the cost is on the processing power of the CPU which has a direct implication on the power source or the battery used. With various implementations of cryptography algorithms available, many of them could satisfy different level of needs. In this research, we introduce the architecture for a multi-layered security of automated assessment of programming code. First, we review the existing research studies in the area. We describe the features of the tool, as part of a complex elearning environment. We also discuss the implementation of security, to protect data transmission and storage used by the tool. Challenges the system might face and the potential solutions, are also described.

show abstract

“…An multi-agent approach (Marhusin et al, 2008;Sulaiman et al, 2011) offers a more dynamic socialoriented based communications.…”

Section: Multi-agent Systemsmentioning

confidence: 99%

Section: Vulnerability Exploitationmentioning

confidence: 99%

A Framework for a Multi-Layered Security of an Automated Programming Code Assessment Tool

Marhusin¹,

Kafli²,

Sulaiman

et al. 2015

Journal of Computer Science

Self Cite

View full text Add to dashboard Cite

show abstract

“…Misuse detection technique uses specifically known patterns of unauthorized behavior to predict and detect subsequent similar attempts. These specific patterns are called signatures [8,9].…”

Section: Select * From Users Where User_name='' or 1=1mentioning

confidence: 99%

Web Anomaly Misuse Intrusion Detection Framework for SQL Injection Detection

Salama¹,

Marie²,

El-Fangary³

et al. 2012

IJACSA

View full text Add to dashboard Cite

Abstract-Databases at the background of e-commerce applications are vulnerable to SQL injection attack which is considered as one of the most dangerous web attacks. In this paper we propose a framework based on misuse and anomaly detection techniques to detect SQL injection attack. The main idea of this framework is to create a profile for legitimate database behavior extracted from applying association rules on XML file containing queries submitted from application to the database. As a second step in the detection process, the structure of the query under observation will be compared against the legitimate queries stored in the XML file thus minimizing false positive alarms.

show abstract

“…Intrusion detection research has employed analysis based on various sources such as audit trails, network traffic and kernel API calls [2]. In malware detection research, a number of solutions has been attempted including checksum, heuristic, integrity shell, string checker, system call tracing, machine emulators, logic analyzers, network sniffers, software certification etc [3], [4].…”

Section: Problem Statementmentioning

confidence: 99%