Normal view MARC view ISBD view

Recent Advances in Intrusion Detection [electronic resource] : 11th International Symposium, RAID 2008, Cambridge, MA, USA, September 15-17, 2008, Proceedings / edited by Richard Lippmann, Engin Kirda, Ari Trachtenberg.

Contributor(s): Lippmann, Richard [editor.] | Kirda, Engin [editor.] | Trachtenberg, Ari [editor.] | SpringerLink (Online service).
Material type: materialTypeLabelBookSeries: Security and Cryptology: 5230Publisher: Berlin, Heidelberg : Springer Berlin Heidelberg : Imprint: Springer, 2008Edition: 1st ed. 2008.Description: XIV, 424 p. online resource.Content type: text Media type: computer Carrier type: online resourceISBN: 9783540874034.Subject(s): Electronic data processing -- Management | Computers and civilization | Cryptography | Data encryption (Computer science) | Computer networks  | Data protection | IT Operations | Computers and Society | Cryptology | Computer Communication Networks | Data and Information SecurityAdditional physical formats: Printed edition:: No title; Printed edition:: No titleDDC classification: 004.068 Online resources: Click here to access online
Contents:
Recent Advances in Intrusion Detection -- Guest-Transparent Prevention of Kernel Rootkits with VMM-Based Memory Shadowing -- Countering Persistent Kernel Rootkits through Systematic Hook Discovery -- Malware Detection and Prevention -- Tamper-Resistant, Application-Aware Blocking of Malicious Network Connections -- A First Step towards Live Botmaster Traceback -- A Layered Architecture for Detecting Malicious Behaviors -- A Study of the Packer Problem and Its Solutions -- High Performance Intrusion Detection and Evasion -- Gnort: High Performance Network Intrusion Detection Using Graphics Processors -- Predicting the Resource Consumption of Network Intrusion Detection Systems -- High-Speed Matching of Vulnerability Signatures -- Web Application Testing and Evasion -- Swarm Attacks against Network-Level Emulation/Analysis -- Leveraging User Interactions for In-Depth Testing of Web Applications -- Model-Based Covert Timing Channels: Automated Modeling and Evasion -- Alert Correlation and Worm Detection -- Optimal Cost, Collaborative, and Distributed Response to Zero-Day Worms - A Control Theoretic Approach -- On the Limits of Payload-Oblivious Network Attack Detection -- Determining Placement of Intrusion Detectors for a Distributed Application through Bayesian Network Modeling -- A Multi-Sensor Model to Improve Automated Attack Detection -- Anomaly Detection and Network Traffic Analysis -- Monitoring SIP Traffic Using Support Vector Machines -- The Effect of Clock Resolution on Keystroke Dynamics -- A Comparative Evaluation of Anomaly Detectors under Portscan Attacks -- Advanced Network Fingerprinting -- Posters -- On Evaluation of Response Cost for Intrusion Response Systems -- WebIDS: A Cooperative Bayesian Anomaly-Based Intrusion Detection System for Web Applications (Extended Abstract) -- Evading Anomaly Detection through Variance Injection Attacks on PCA -- Anticipating Hidden Text Salting in Emails -- Improving Anomaly Detection Error Rate by Collective Trust Modeling -- Database Intrusion Detection and Response -- An Empirical Approach to Identify Information Misuse by Insiders (Extended Abstract) -- Page-Based Anomaly Detection in Large Scale Web Clusters Using Adaptive MapReduce (Extended Abstract) -- Automating the Analysis of Honeypot Data (Extended Abstract) -- Anomaly and Specification Based Cognitive Approach for Mission-Level Detection and Response -- Monitoring the Execution of Third-Party Software on Mobile Devices -- Streaming Estimation of Information-Theoretic Metrics for Anomaly Detection (Extended Abstract) -- Bots Behaviors vs. Human Behaviors on Large-Scale Communication Networks (Extended Abstract) -- Anomalous Taint Detection -- Deep Packet Inspection Using Message Passing Networks -- System Call API Obfuscation (Extended Abstract).
In: Springer Nature eBookSummary: This book constitutes the refereed proceedings of the 11th International Symposium on Recent Advances in Intrusion Detection, RAID 2008, held in Cambridge, MA, USA, in September 2008. The 20 revised full papers presented together with 16 revised poster papers were carefully reviewed and selected from 80 submissions. The papers are organized in topical sections on rootkit prevention, malware detection and prevention, high performance intrusion and evasion, Web application testing and evasion, alert correlation and worm detection, as well as anomaly detection and network traffic analysis.
    average rating: 0.0 (0 votes)
No physical items for this record

Recent Advances in Intrusion Detection -- Guest-Transparent Prevention of Kernel Rootkits with VMM-Based Memory Shadowing -- Countering Persistent Kernel Rootkits through Systematic Hook Discovery -- Malware Detection and Prevention -- Tamper-Resistant, Application-Aware Blocking of Malicious Network Connections -- A First Step towards Live Botmaster Traceback -- A Layered Architecture for Detecting Malicious Behaviors -- A Study of the Packer Problem and Its Solutions -- High Performance Intrusion Detection and Evasion -- Gnort: High Performance Network Intrusion Detection Using Graphics Processors -- Predicting the Resource Consumption of Network Intrusion Detection Systems -- High-Speed Matching of Vulnerability Signatures -- Web Application Testing and Evasion -- Swarm Attacks against Network-Level Emulation/Analysis -- Leveraging User Interactions for In-Depth Testing of Web Applications -- Model-Based Covert Timing Channels: Automated Modeling and Evasion -- Alert Correlation and Worm Detection -- Optimal Cost, Collaborative, and Distributed Response to Zero-Day Worms - A Control Theoretic Approach -- On the Limits of Payload-Oblivious Network Attack Detection -- Determining Placement of Intrusion Detectors for a Distributed Application through Bayesian Network Modeling -- A Multi-Sensor Model to Improve Automated Attack Detection -- Anomaly Detection and Network Traffic Analysis -- Monitoring SIP Traffic Using Support Vector Machines -- The Effect of Clock Resolution on Keystroke Dynamics -- A Comparative Evaluation of Anomaly Detectors under Portscan Attacks -- Advanced Network Fingerprinting -- Posters -- On Evaluation of Response Cost for Intrusion Response Systems -- WebIDS: A Cooperative Bayesian Anomaly-Based Intrusion Detection System for Web Applications (Extended Abstract) -- Evading Anomaly Detection through Variance Injection Attacks on PCA -- Anticipating Hidden Text Salting in Emails -- Improving Anomaly Detection Error Rate by Collective Trust Modeling -- Database Intrusion Detection and Response -- An Empirical Approach to Identify Information Misuse by Insiders (Extended Abstract) -- Page-Based Anomaly Detection in Large Scale Web Clusters Using Adaptive MapReduce (Extended Abstract) -- Automating the Analysis of Honeypot Data (Extended Abstract) -- Anomaly and Specification Based Cognitive Approach for Mission-Level Detection and Response -- Monitoring the Execution of Third-Party Software on Mobile Devices -- Streaming Estimation of Information-Theoretic Metrics for Anomaly Detection (Extended Abstract) -- Bots Behaviors vs. Human Behaviors on Large-Scale Communication Networks (Extended Abstract) -- Anomalous Taint Detection -- Deep Packet Inspection Using Message Passing Networks -- System Call API Obfuscation (Extended Abstract).

This book constitutes the refereed proceedings of the 11th International Symposium on Recent Advances in Intrusion Detection, RAID 2008, held in Cambridge, MA, USA, in September 2008. The 20 revised full papers presented together with 16 revised poster papers were carefully reviewed and selected from 80 submissions. The papers are organized in topical sections on rootkit prevention, malware detection and prevention, high performance intrusion and evasion, Web application testing and evasion, alert correlation and worm detection, as well as anomaly detection and network traffic analysis.

There are no comments for this item.

Log in to your account to post a comment.