Experiences with Specification-Based Intrusion Detection

Uppuluri, Prem; Sekar, R.

doi:10.1007/3-540-45474-8_11

Cited by 96 publications

(82 citation statements)

References 2 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…So while our datasets did not include actual attacks, we were able to reliably detect notable deviations from the specifications at zero false-positives. This result is in line with the work of Uppuluri et al [179] showing that specification-based intrusion detection works towards optimal detection rate while substantially decreasing the number of false positives compared to anomaly-based detection.…”

Section: Discussionsupporting

confidence: 91%

Intrusion detection in networked control systems : from system knowledge to network security

Caselli¹

View full text Add to dashboard Cite

Section: Discussionsupporting

confidence: 91%

Intrusion detection in networked control systems : from system knowledge to network security

Caselli¹

View full text Add to dashboard Cite

“…And for keeping them up to date is a demanding task. [2] 3) Specification-Based Intrusion Detection Proposals: The SBID approach was introduced and tested in fixed networks in [21] [22] [23]. In MANETs, SBIDs describe the correct operation of the protocol by defining a set of constraints, and monitor the execution of the protocol with respect to the defined constraints to detect anomalies in the network.…”

Section: ) Anomaly-based Intrusion Detectionmentioning

confidence: 99%

Enhancing Security with Intrusion Detection Methods in Multihop MANETs

Rajasekar¹,

Parameswaran²

2015

Int. Jour. Info. Sci. Comp.

View full text Add to dashboard Cite

Abstract-MANET plays a major role in next generation wireless networking technology. Information exchange in a mobile network without any infrastructure support, such networks are called Adhoc networks. This plays a major platform and used in important applications. A Mobile Adhoc Network is a mobile multihop wireless network, which is capable of autonomous operation. Because of the open medium and wide distribution of nodes make MANET harm to malicious attackers. It is crucial to develop efficient intrusion detection mechanisms to protect MANET from attacks. We present a various types of attacks in the network layer and Intrusion Detection mechanisms are used for protecting multihop MANET. To overcome the attacks, enhancing security method called Hybrid Cryptography and a comparison of various types of attacks with different IDs mechanisms is made. We classify, a single type of attack can be achieved by point detection algorithm (PDA) and range of attacks can be achieved by intrusion detection systems (IDs). Our survey is based on various types of attacks on multihop MANET and investigation of problems caused through malicious nodes by various types of Active and Passive group.

show abstract

“…Therefore, these techniques are generally employed together for effective intrusion detection. Specification-based technique is introduced as a promising alternative that combines the strengths of anomaly-based and misuse-based detection techniques [28], providing detection of known and unknown attacks with lower false positive rate. In this technique, a set of constraints of a program or a protocol are specified and intrusions are detected as runtime violations of these specifications.…”

Section: Introductionmentioning

confidence: 99%

Power-Aware Intrusion Detection in Mobile Ad Hoc Networks

2010

View full text Add to dashboard Cite

Abstract. Mobile ad hoc networks (MANETs) are a highly promising new form of networking. However they are more vulnerable to attacks than wired networks. In addition, conventional intrusion detection systems (IDS) are ineffective and inefficient for highly dynamic and resourceconstrained environments. Achieving an effective operational MANET requires tradeoffs to be made between functional and non-functional criteria. In this paper we show how Genetic Programming (GP) together with a Multi-Objective Evolutionary Algorithm (MOEA) can be used to synthesise intrusion detection programs that make optimal tradeoffs between security criteria and the power they consume.

show abstract

Experiences with Specification-Based Intrusion Detection

Cited by 96 publications

References 2 publications

Intrusion detection in networked control systems : from system knowledge to network security

Intrusion detection in networked control systems : from system knowledge to network security

Enhancing Security with Intrusion Detection Methods in Multihop MANETs

Power-Aware Intrusion Detection in Mobile Ad Hoc Networks

Contact Info

Product

Resources

About