| Publisher | University of Amsterdam | ||
|---|---|---|---|
| Format | 181.6KB PDF | Date added | 04 Feb 2005 |
| Topics | Network Security, Security Tools, Intrusion Detection Systems | ||
| Downloads | 171 | ||
Host-based Intrusion Detection Systems can be used to determine if a system has been compromised and can warn administrators if that happens. This paper recognizes four different methods of host-based intrusion detection: filesystem monitoring, logfile analysis, connection analysis and kernel-based intrusion detection. Implementations of intrusion detection systems generally use one of these four methods to detect intrusions. This paper has studied multiple implementations, determined their features, ways of evading their restrictions and ways to prevent evasion. The paper has also given insight into the reasons why certain systems should or should not be used and to what extent, based on their effectiveness and ease of configuration and maintenance.
Related white papers
MessageLabs Intelligence : 2009 security Predictions
Having analyzed the global threat landscape for almost a decade, MessageLabs Team Skeptic™ is comprised of many world-renowned malware and spam experts who have a global view of threats across...
Tangled Web : Undercover Threats, Invisible Enemies
MessageLabs offers integrated web and email security services proven to stay a step ahead of the bad guys. Its Web Security service, for example, includes anti-spyware and anti-virus protection, as...
Security & trust: the backbone of doing business over the internet
In e-commerce consumers are concerned about indentity theft. TNS research reported in 2006 70% of online shoppers have abandoned a purchase beacuase of security concerns. This white paper explores the...
IDC Vendor Spotlight
Organised ubiquity is a must for organisations to sucessfully "project" their users in any given landspace, at any given time, with secuirty policy. This White Paper covers issues surrounding secure...
Staying a step ahead of the hackers: the importance of identifying critical Web application vulnerabilities
Managers work to better manage the risks associated with their business infrastructure. Web application security plays a significant role in achieveing this goal. This white paper deals with issues surrounding...
Web application security: automated scanning versus manual penetration testing.
research has shown that a vast number of web sites are vunerable to application attacks, most occur over HTTP/S protocals. There are twom methods to detect web vunerablity . This...
Trend Micro Enterprise Security white paper
This white paper reviews the content security threat landscape and how it has evolved into a more dangerous and high risk environment. The paper discussed how conventional content security approaches...





