| Publisher | Association for Computing Machinery | ||
|---|---|---|---|
| Format | 147.4KB PDF | Date added | 22 Nov 2002 |
| Topics | Security Tools, Intrusion Detection Systems | ||
| Downloads | 54 | ||
This paper examines several host-based anomaly detection systems and studies their security against evasion attacks. First, it introduces the notion of a mimicry attack, which allows a sophisticated attacker to cloak their intrusion to avoid detection by the Intrusion Detection Systems (IDS). Then, a theoretical framework is developed for evaluating the security of IDS against mimicry at-tacks. The paper shows how to break the security of one published IDS with these methods, and it experimentally confirm the power of mimicry attacks by giving a worked example of an attack on a concrete IDS implementation.
Did you find this white paper useful?
7 out of 16 users found this white paper useful
Related white papers
Compliance with Data Handling Procedures in UK Government
The UK Data Handling Procedures in Government Report set out clear and mandatory procedures to be followed by all government employees that have access to and responsibility for citizen data....
Not an End In Itself: Information Protection and Return on Risk
Information protection, a core discipline of information stewardship, must balancing rick mitigation with utility. This white paper deals with the shift in "is this technology secure enough" to "we can...
Web application security: automated scanning versus manual penetration testing.
Research has shown that a vast number of Web sites are vulnerable to Web application attacks and that a great percentage of these attacks occur over the HTTP/S protocols, ports...
IDENTITY AND ACCESS MANAGEMENT
This CA whitepaper explores how a comprehensive identity and access management solution can help reduce security risk and achieve easier compliance
Beyond URL Filtering: Why a Secure Web Gateway is the answer
"The Internet is a vital part of business life, but one that also exposes employees and employers to significant security threats. Download this whitepaper to learn about various web-based threats, and...
Secure Desktop On-Demand Webcast
The desktop or endpoint is one of the most vulnerable parts of your environment. Threats are everywhere. You have users who love to experiment with device settings (only to wonder...
Understanding Web application security challenges
Business has grown increasingly independent upon web applications and they are becoming more difficult to secure. This paper explains what you can do to protect your organization and improve Web...
