Analysis of distributed intrusion detection systems using Bayesian methods

Author

Burroughs, Daniel J. ; Wilson, Linda F. ; Cybenko, George V.

Author_Institution

Thayer Sch. of Eng., Dartmouth Coll., Hanover, NH, USA

fYear

2002

fDate

2002

Firstpage

329

Lastpage

334

Abstract

In computer and network security, standard approaches to intrusion detection and response attempt to detect and prevent individual attacks. However, it is not the attack but rather the attacker against which our networks must be defended. To do this, the information that is being provided by intrusion detection systems (IDS) must be gathered and then divided into its component parts such that the activity of individual attackers is made clear. Our approach to this involves the application of Bayesian methods to data being gathered from distributed IDS. With this we hope to improve the capabilities for early detection of distributed attacks against infrastructure and the detection of the preliminary phases of distributed denial of service attacks

Keywords

Bayes methods; Internet; authorisation; security of data; telecommunication security; Bayesian methods; IDS; computer security; data gathering; denial of service attacks; distributed attacks; distributed intrusion detection systems; network security; Bayesian methods; Computer networks; Computer security; Educational institutions; Intrusion detection; Phase detection; Scattering; Sensor fusion; Target tracking; Telecommunication traffic;

fLanguage

English

Publisher

ieee

Conference_Titel

Performance, Computing, and Communications Conference, 2002. 21st IEEE International

Conference_Location

Phoenix, AZ

Print_ISBN

0-7803-7371-5

Type

conf

DOI

10.1109/IPCCC.2002.995166

Filename

995166