• DocumentCode
    1388615
  • Title

    The threat from the net [Internet security]

  • Author

    Bishop, Martin ; Cheung, Stephane ; Wee, Chong-Yaw

  • Author_Institution
    Fac. of the Comput. Security Lab., California Univ., Davis, CA
  • Volume
    34
  • Issue
    8
  • fYear
    1997
  • fDate
    8/1/1997 12:00:00 AM
  • Firstpage
    56
  • Lastpage
    63
  • Abstract
    As it stands today, the Internet is not secure, so the only option is to understand how attacks occur and how best to protect against them. Ways to detect an intrusion and assess what the intruder did must be well thought out. For the most part, they will rely upon the ability of each system on the Internet to keep a log of events. The logs are invaluable for intrusion detection and analysis, indeed, they are basic to all postattack analysis. Authors of the security policy must determine what to log (keeping in mind how the desired level of logging will affect system performance) and how the logs should be analyzed. The logs should note who has entered the system as well as what they have done. Before a detailed examination is made of security methods, the issues affecting security enforcement are reviewed. The detection of intrusion using manual and automatic methods are discussed as are counterattack and damage assessment
  • Keywords
    Internet; security of data; Internet intruder detection; Internet security; counterattack; damage assessment; event logs; intrusion analysis; intrusion detection; postattack analysis; security enforcement issues; security policy; Access control; Computer security; Credit cards; Cryptography; Information security; Mathematical model; Performance analysis; Permission; Protection; System performance;
  • fLanguage
    English
  • Journal_Title
    Spectrum, IEEE
  • Publisher
    ieee
  • ISSN
    0018-9235
  • Type

    jour

  • DOI
    10.1109/6.609475
  • Filename
    609475