Conference Proceedings

NetSTAT: A network-based intrusion detection approach

Proceedings - Annual Computer Security Applications Conference, ACSAC (1998) 25-34
DOI: 10.1109/CSAC.1998.738566
202Citations
Citations of this article
144Readers
Mendeley users who have this article in their library.
Get full text

Abstract

Network-based attacks have become common and sophisticated. For this reason, intrusion detection systems are now shifting their focus from the hosts and their operating systems to the network itself. Network-based intrusion detection is challenging because network auditing produces large amounts of data, and different events related to a single intrusion may be visible in different places on the network. This paper presents NetSTAT, a new approach to network intrusion detection. By using a formal model of both the network and the attacks, NetSTAT is able to determine which network events have to be monitored and where they can be monitored.

Author supplied keywords

Cite

CITATION STYLE

APA

Vigna, G., & Kemmerer, R. A. (1998). NetSTAT: A network-based intrusion detection approach. In Proceedings - Annual Computer Security Applications Conference, ACSAC (pp. 25–34). Association for Computing Machinery. https://doi.org/10.1109/CSAC.1998.738566

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free