Computer network intrusion detection, assessment and prevention based on security dependency relation

Sik-Sang Yau, Xinyu Zhang

Research output: Chapter in Book/Report/Conference proceedingConference contribution

20 Scopus citations

Abstract

In this paper an approach to detection, assessment and prevention of further intrusions of distributed intrusions in a computer network is presented. Our approach uses audit data from multiple network nodes and services. To achieve accurate result, inherent security relations among different network nodes should be considered. In our approach, security dependency relation (SDR) is defined to describe these relations, and ripple effect analysis is used to detect, assess, and prevent intrusions based on SDRs. Agents are used to improve the scalability and efficiency of our approach.

Original languageEnglish (US)
Title of host publicationProceedings - IEEE Computer Society's International Computer Software and Applications Conference
PublisherIEEE
Pages86-91
Number of pages6
StatePublished - 1999
EventProceedings of the 1999 23rd Annual International Computer Software and Applications Conference (COMPSAC '99) - Phoenix, AZ, USA
Duration: Oct 27 1999Oct 29 1999

Other

OtherProceedings of the 1999 23rd Annual International Computer Software and Applications Conference (COMPSAC '99)
CityPhoenix, AZ, USA
Period10/27/9910/29/99

ASJC Scopus subject areas

  • Software

Fingerprint Dive into the research topics of 'Computer network intrusion detection, assessment and prevention based on security dependency relation'. Together they form a unique fingerprint.

  • Cite this

    Yau, S-S., & Zhang, X. (1999). Computer network intrusion detection, assessment and prevention based on security dependency relation. In Proceedings - IEEE Computer Society's International Computer Software and Applications Conference (pp. 86-91). IEEE.