An attack detection system for secure computer systems — Outline of the solution

Abstract

The spread of distributed information technology has increased the number of opportunities for crime and fraud in computer systems. Despite the fact that computer systems are typically protected by a number of security mechanisms, attacks continue to occur. In addition, it seems infeasible to close all the known security loopholes of today's systems. No combination of technologies can prevent legitimate users from abusing their authority in a system. Thus, new lines of defence are required to ensure safe operation of computer systems as well as data protection. Attack Detection Systems are an approach to enhancing the security of a computer system. The Attack Detection System (ADS) which is the subject of this paper, is a real-time attack detection system which allocates points to users who are attempting to attack the target system, detects attacks by examining the number of points each user has been given, and takes countermeasures according to this number of points. The outline of the solution that implements the ADS is described in detail in this paper.