Title :
Emerging threats, risks and mitigation strategies in network forensics
Author_Institution :
Univ. of Essex, Colchester, UK
Abstract :
Sophisticated intrusions are evolving everyday. Hence, requirements are changing towards computer systems that provide more robust solutions. However, new issues, bugs, threats and vulnerabilities are unavoidably introduced into the market each time a new product is designed to meet users´ specifications. For these reasons, Vendors, research community, network forensics professionals and other users of Network Intrusion Detection Systems write tons of detection rules to maximally detect attacks. Despite these, numerous attacks still evade intrusion detectors because of insufficient evidence to expose the emerging threats and risks in the usage of intrusion detection technology. Thus, this paper presents a critical review of these problems. The review provides useful guidelines that can be used to enhance efficacy of intrusion detection system and to achieve high returns on investment.
Keywords :
computer forensics; computer network security; mitigation strategies; network forensics; network intrusion detection systems; risk strategies; threat strategies; Computer networks; Computers; Conferences; Detectors; Forensics; Intrusion detection; Redundancy; Network intrusion detection System; Redundant attacks; failed attacks; information system auditor; network forensics; pattern matching;
Conference_Titel :
Electrical and Computer Engineering (CCECE), 2011 24th Canadian Conference on
Conference_Location :
Niagara Falls, ON
Print_ISBN :
978-1-4244-9788-1
Electronic_ISBN :
0840-7789
DOI :
10.1109/CCECE.2011.6030658
