Using Constraints for Intrusion Detection: the NeMODe System - Archive ouverte HAL Access content directly
Conference Papers Year : 2011

Using Constraints for Intrusion Detection: the NeMODe System

Pedro Salgueiro
  • Function : Author
Daniel Diaz
Centre de Recherche en Informatique de Paris 1
CV
Isabel Brito
  • Function : Author
Service de Bioinformatique
Salvador Abreu
  • Function : Author
Centre for Artificial Intelligence

Abstract

In this work we present NeMODe a declarative system for Computer Network Intrusion detection which provides a declarative Domain Specific Language for describing computer network intrusion signatures that could spread across several network packets, which allows to state constraints over network packets, describing relations between several packets, and providing several back-end detection mechanisms which relies on Constraint Programming (CP) methodologies to find those intrusions.

Diane Diaz  : Connect in order to contact the contributor

https://hal-paris1.archives-ouvertes.fr/hal-00663805

Submitted on : Friday, January 27, 2012-3:52:09 PM

Last modification on : Friday, April 29, 2022-10:12:48 AM

Consult the full text

Dates and versions

hal-00663805 , version 1 (27-01-2012)

Identifiers

Cite

Pedro Salgueiro, Daniel Diaz, Isabel Brito, Salvador Abreu. Using Constraints for Intrusion Detection: the NeMODe System. 13th International Symposium, PADL 2011, Jan 2011, Austin, Texas, United States. pp.115-129, ⟨10.1007/978-3-642-18378-2_11⟩. ⟨hal-00663805⟩

Export

BibTeX TEI Dublin Core DC Terms EndNote Datacite

Collections

UNIV-PARIS1 FNCLCC CURIE CRI PSL
61 View
0 Download

Altmetric

Share

Gmail Facebook Twitter LinkedIn More