A log analysis based intrusion detection system for the creation of a specification based intrusion prevention system

Please use this identifier to cite or link to this item: https://www.um.edu.mt/library/oar/handle/123456789/20684

Title:	A log analysis based intrusion detection system for the creation of a specification based intrusion prevention system
Authors:	Muscat, Andre
Keywords:	Pattern recognition systems Anomaly detection (Computer security) Data mining Computer networks -- Security measures
Issue Date:	2003
Publisher:	University of Malta. Faculty of ICT
Citation:	Muscat, A. (2003). A log analysis based intrusion detection system for the creation of a specification based intrusion prevention system. 1st Computer Science Annual Workshop (CSAW’03), Msida. 73-79.
Abstract:	We propose a novel Intrusion Prevention System (IPS) which would base its knowledge and operation on a higher level of abstraction than the processing of the contents of the network packets audit data themselves which is the source of data on which most current and proposed Intrusion Detection Systems (IDS) base themselves on. We focus on what is actually being asked of the system, and use that understanding together with research on prediction based systems to build a specification based Intrusion Prevention System based on the patterns extracted from higher level application or operating system logs.
URI:	https://www.um.edu.mt/library/oar//handle/123456789/20684
Appears in Collections:	Scholarly Works - FacICTCS

Files in This Item:

File	Description	Size	Format
Proceedings of CSAW’03-A14.pdf		85.19 kB	Adobe PDF	View/Open