Computer network intrusion detection, assessment and prevention based on security dependency relation

Sik-Sang Yau, Xinyu Zhang

Research output: Chapter in Book/Report/Conference proceedingConference contribution

19 Citations (Scopus)

Abstract

In this paper an approach to detection, assessment and prevention of further intrusions of distributed intrusions in a computer network is presented. Our approach uses audit data from multiple network nodes and services. To achieve accurate result, inherent security relations among different network nodes should be considered. In our approach, security dependency relation (SDR) is defined to describe these relations, and ripple effect analysis is used to detect, assess, and prevent intrusions based on SDRs. Agents are used to improve the scalability and efficiency of our approach.

Original languageEnglish (US)
Title of host publicationProceedings - IEEE Computer Society's International Computer Software and Applications Conference
PublisherIEEE
Pages86-91
Number of pages6
StatePublished - 1999
EventProceedings of the 1999 23rd Annual International Computer Software and Applications Conference (COMPSAC '99) - Phoenix, AZ, USA
Duration: Oct 27 1999Oct 29 1999

Other

OtherProceedings of the 1999 23rd Annual International Computer Software and Applications Conference (COMPSAC '99)
CityPhoenix, AZ, USA
Period10/27/9910/29/99

Fingerprint

Intrusion detection
Computer networks
Scalability

ASJC Scopus subject areas

  • Software

Cite this

Yau, S-S., & Zhang, X. (1999). Computer network intrusion detection, assessment and prevention based on security dependency relation. In Proceedings - IEEE Computer Society's International Computer Software and Applications Conference (pp. 86-91). IEEE.

Computer network intrusion detection, assessment and prevention based on security dependency relation. / Yau, Sik-Sang; Zhang, Xinyu.

Proceedings - IEEE Computer Society's International Computer Software and Applications Conference. IEEE, 1999. p. 86-91.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Yau, S-S & Zhang, X 1999, Computer network intrusion detection, assessment and prevention based on security dependency relation. in Proceedings - IEEE Computer Society's International Computer Software and Applications Conference. IEEE, pp. 86-91, Proceedings of the 1999 23rd Annual International Computer Software and Applications Conference (COMPSAC '99), Phoenix, AZ, USA, 10/27/99.
Yau S-S, Zhang X. Computer network intrusion detection, assessment and prevention based on security dependency relation. In Proceedings - IEEE Computer Society's International Computer Software and Applications Conference. IEEE. 1999. p. 86-91
Yau, Sik-Sang ; Zhang, Xinyu. / Computer network intrusion detection, assessment and prevention based on security dependency relation. Proceedings - IEEE Computer Society's International Computer Software and Applications Conference. IEEE, 1999. pp. 86-91
@inproceedings{d1d825482e434f88b3d01f58d17568f7,
title = "Computer network intrusion detection, assessment and prevention based on security dependency relation",
abstract = "In this paper an approach to detection, assessment and prevention of further intrusions of distributed intrusions in a computer network is presented. Our approach uses audit data from multiple network nodes and services. To achieve accurate result, inherent security relations among different network nodes should be considered. In our approach, security dependency relation (SDR) is defined to describe these relations, and ripple effect analysis is used to detect, assess, and prevent intrusions based on SDRs. Agents are used to improve the scalability and efficiency of our approach.",
author = "Sik-Sang Yau and Xinyu Zhang",
year = "1999",
language = "English (US)",
pages = "86--91",
booktitle = "Proceedings - IEEE Computer Society's International Computer Software and Applications Conference",
publisher = "IEEE",

}

TY - GEN

T1 - Computer network intrusion detection, assessment and prevention based on security dependency relation

AU - Yau, Sik-Sang

AU - Zhang, Xinyu

PY - 1999

Y1 - 1999

N2 - In this paper an approach to detection, assessment and prevention of further intrusions of distributed intrusions in a computer network is presented. Our approach uses audit data from multiple network nodes and services. To achieve accurate result, inherent security relations among different network nodes should be considered. In our approach, security dependency relation (SDR) is defined to describe these relations, and ripple effect analysis is used to detect, assess, and prevent intrusions based on SDRs. Agents are used to improve the scalability and efficiency of our approach.

AB - In this paper an approach to detection, assessment and prevention of further intrusions of distributed intrusions in a computer network is presented. Our approach uses audit data from multiple network nodes and services. To achieve accurate result, inherent security relations among different network nodes should be considered. In our approach, security dependency relation (SDR) is defined to describe these relations, and ripple effect analysis is used to detect, assess, and prevent intrusions based on SDRs. Agents are used to improve the scalability and efficiency of our approach.

UR - http://www.scopus.com/inward/record.url?scp=0033335469&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=0033335469&partnerID=8YFLogxK

M3 - Conference contribution

AN - SCOPUS:0033335469

SP - 86

EP - 91

BT - Proceedings - IEEE Computer Society's International Computer Software and Applications Conference

PB - IEEE

ER -