The Center for Education and Research in Information Assurance and Security (CERIAS)

The Center for Education and Research in
Information Assurance and Security (CERIAS)
Center for Education and Research in Information Assurance and Security

The Architecture of a Network Level Intrusion Detection System

Author

Richard Heady,George Lugar,Mark Servilla,Arthur Maccabe

Entry type

techreport

Abstract

This paper presents the prelimiary architechture of a network level-intrusion detection system. The proposed system will monitor base level information in network packets (source, destination, packet size, and time), learning the 'normal' patterns and announcing anomalies as they occur. The goal of this research is to determine the applicability of current intrusion detection technology to the detection of network level intrusions. In particular, we are investigating the possibility of using this technology to detect and react to worm programs.

Date

1990 – August

URL

http://www.osti.gov/energycita ... Pw/webviewable/425295.pdf

Address

Albuquerque, NM

Institution

University of New Mexico

Key alpha

Heady

Publication Date

2001-01-01

BibTex-formatted data

To refer to this entry, you may select and copy the text below and paste it into your BibTex document. Note that the text may not contain all macros that BibTex supports.