Document Open Access Logo

6. 08102 Working Group – Requirements for Network Monitoring from an IDS Perspective

Authors Lothar Braun, Falko Dressler, Thorsten Holz, Engin Kirda, Jan Kohlrausch, Christopher Kruegel, Tobias Limmer, Konrad Rieck, James Sterbenz



PDF
Thumbnail PDF

File

DagSemProc.08102.6.pdf
  • Filesize: 29 kB
  • 4 pages

Document Identifiers

Author Details

Lothar Braun
Falko Dressler
Thorsten Holz
Engin Kirda
Jan Kohlrausch
Christopher Kruegel
Tobias Limmer
Konrad Rieck
James Sterbenz

Cite AsGet BibTex

Lothar Braun, Falko Dressler, Thorsten Holz, Engin Kirda, Jan Kohlrausch, Christopher Kruegel, Tobias Limmer, Konrad Rieck, and James Sterbenz. 6. 08102 Working Group – Requirements for Network Monitoring from an IDS Perspective. In Perspectives Workshop: Network Attack Detection and Defense. Dagstuhl Seminar Proceedings, Volume 8102, pp. 1-4, Schloss Dagstuhl – Leibniz-Zentrum für Informatik (2008)
https://doi.org/10.4230/DagSemProc.08102.6

Abstract

Detection of malicious traffic is based on its input data, the information that is co-ming from network-based monitoring systems. Best detection rates would only be possible by monitoring all data transferred over all network lines in a distributed net-work. Monitoring and reporting this amount of data are feasible in neither today's, nor will be in future's systems. Later analysis like stateful inspection of the traffic imposes even more processing costs. But only at this level of monitoring and analysis there may be a chance to capture all attacks inside a system. So there needs to be a trade-off between detection success and the processing costs.
Keywords
  • Intrusion detection and prevention
  • attack response and countermeasures
  • reactive security
  • automated security
  • survivability and self-protection
  • ma network monitoring
  • flow analysis
  • denial of service detection and response
  • event correlation

Metrics

  • Access Statistics
  • Total Accesses (updated on a weekly basis)
    0
    PDF Downloads
Questions / Remarks / Feedback
X

Feedback for Dagstuhl Publishing


Thanks for your feedback!

Feedback submitted

Could not send message

Please try again later or send an E-mail