Title:
Recent advances in intrusion detection : 10th International Symposium, RAID 2007, Gold Coast, Australia, September 5-7, 2007, proceedings
Conference Author:
Series:
Lecture notes in computer science ; 4637
Publication Information:
Berlin : Springer, 2007
Physical Description:
xii, 336 p. : ill. ; 24 cm.
ISBN:
9783540743194
General Note:
Available online version
Electronic Access:
FulltextAvailable:*
Library | Item Barcode | Call Number | Material Type | Item Category 1 | Status |
---|---|---|---|---|---|
Searching... | 30000010164734 | QA76.9.A25 R344 2007 | Open Access Book | Proceedings, Conference, Workshop etc. | Searching... |
On Order
Summary
Summary
Here are the refereed proceedings of the 10th International Symposium on Recent Advances in Intrusion Detection. The 17 full papers were carefully reviewed. Each one represents an important contribution to the study of intrusion detection. Papers cover anomaly detection, attacks, system evaluation and threat assessment, malware collection and analysis, anomaly- and specification-based detection, and network intrusion detection.
Table of Contents
Host-Based Intrusion Detection | |
Exploiting Execution Context for the Detection of Anomalous System Calls | p. 1 |
Understanding Precision in Host Based Intrusion Detection | p. 21 |
Anomaly-Based Intrusion Detection | |
Comparing Anomaly Detection Techniques for HTTP | p. 42 |
Swaddler: An Approach for the Anomaly-Based Detection of State Violations in Web Applications | p. 63 |
Network-Based Intrusion Detection and Response | |
Emulation-Based Detection of Non-self-contained Polymorphic Shellcode | p. 87 |
The NIDS Cluster: Scalable, Stateful Network Intrusion Detection on Commodity Hardware | p. 107 |
Cost-Sensitive Intrusion Responses for Mobile Ad Hoc Networks | p. 127 |
Insider Detection and Alert Correlation | |
Elicit: A System for Detecting Insiders Who Violate Need-to-Know | p. 146 |
On the Use of Different Statistical Tests for Alert Correlation - Short Paper | p. 167 |
Malicious Code Analysis | |
Automated Classification and Analysis of Internet Malware | p. 178 |
"Out-of-the-Box" Monitoring of VM-Based High-Interaction Honeypots | p. 198 |
A Forced Sampled Execution Approach to Kernel Rootkit Identification | p. 219 |
Evasion | |
Advanced Allergy Attacks: Does a Corpus Really Help? | p. 236 |
Alert Verification Evasion Through Server Response Forging | p. 256 |
Malicious Code Defense | |
Hit-List Worm Detection and Bot Identification in Large Networks Using Protocol Graphs | p. 276 |
SpyShield: Preserving Privacy from Spy Add-Ons | p. 296 |
Vortex: Enabling Cooperative Selective Wormholing for Network Security Systems | p. 317 |
Author Index | p. 337 |