Skip to main content
Conference Proceedings

Packet space analysis of intrusion detection signatures

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (2009) 5758 LNCS 365-366
DOI: 10.1007/978-3-642-04342-0_26
1Citations
Citations of this article
6Readers
Mendeley users who have this article in their library.
Get full text

Abstract

It is often the case that more than one signature is triggered on a given group of packets, depending on the signature database used by the IDS. For performance reasons, network IDSs often impose an alert limit (i.e., they restrict) on the number of signatures that can be triggered on a given group of packets. Thus, it is possible that some signatures that should be triggered to properly identify attacks are not verified by the IDS and lead to an IDS Evasion attack. In this poster, we introduce the concept of packet space analysis as a solution to address these problems. © 2009 Springer Berlin Heidelberg.

Cite

CITATION STYLE

APA

Massicotte, F. (2009). Packet space analysis of intrusion detection signatures. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 5758 LNCS, pp. 365–366). https://doi.org/10.1007/978-3-642-04342-0_26

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free