CPL - Chalmers Publication Library
| Utbildning | Forskning | Styrkeområden | Om Chalmers | In English In English Ej inloggad.

A Structured Approach to Selecting Data Collection Mechanisms for Intrusion Detection

Ulf Larson (Institutionen för data- och informationsteknik, Nätverk och system (Chalmers) ) ; Erland Jonsson (Institutionen för data- och informationsteknik, Nätverk och system (Chalmers) ) ; Stefan Lindskog
Privacy, Intrusion Detection, and Response: Technologies for Protecting Networks p. 1-39. (2011)
[Kapitel]

This chapter aims at providing a clear and concise picture of data collection for intrusion detection. It provides a detailed explanation of generic data collection mechanism components and the interaction with the environment, from initial triggering to output of log data records. Taxonomies of mechanism characteristics and deployment considerations are provided and discussed. Furthermore, guidelines and hints for mechanism selection and deployment are provided. The guidelines are aimed to assist intrusion detection system developers, designers, and operators in selecting mechanisms for resource efficient data collection.

Nyckelord: computer systems, IT security, intrusion detection, data collection



Den här publikationen ingår i följande styrkeområden:

Läs mer om Chalmers styrkeområden  

Denna post skapades 2011-11-14.
CPL Pubid: 148413

 

Läs direkt!


Länk till annan sajt (kan kräva inloggning)