Using Constraints for Intrusion Detection: the NeMODe System

Pedro Salgueiro Daniel Diaz 1 Isabel Brito 2 Salvador Abreu 3
1 CRI - Centre de Recherche en Informatique de Paris 1
2 CURIE-BIOINFO - Service de Bioinformatique
3 CENTRIA - Centre for Artificial Intelligence
Abstract : In this work we present NeMODe a declarative system for Computer Network Intrusion detection which provides a declarative Domain Specific Language for describing computer network intrusion signatures that could spread across several network packets, which allows to state constraints over network packets, describing relations between several packets, and providing several back-end detection mechanisms which relies on Constraint Programming (CP) methodologies to find those intrusions.
Keywords : Constraint Programming Itrusion Detection Systems Domain Specific Languages
Document type :
Conference papers
Complete list of metadatas
https://hal-paris1.archives-ouvertes.fr/hal-00663805
Contributor : Diane Diaz <>
Submitted on : Friday, January 27, 2012 - 3:52:09 PM
Last modification on : Friday, September 27, 2019 - 12:16:04 PM

Links full text

openaccess

Identifiers

Collections

CRI | UNIV-PARIS1 | FNCLCC | CURIE | PSL

Citation

Pedro Salgueiro, Daniel Diaz, Isabel Brito, Salvador Abreu. Using Constraints for Intrusion Detection: the NeMODe System. 13th International Symposium, PADL 2011, Jan 2011, Austin, Texas, United States. pp.115-129, ⟨10.1007/978-3-642-18378-2_11⟩. ⟨hal-00663805⟩

Export

BibTeX TEI DC DCterms EndNote

Share

Metrics

Record views

181

Contact

support.ccsd.cnrs.fr
hal.support@ccsd.cnrs.fr
Logo CCSD