Intrusion Detection Using Function-based Sequences of System Calls
碩士 === 國立中央大學 === 資訊工程研究所 === 96 === Computer and network security problems cause billions in damage every year. As the use of Internet, modern computer systems are plagued from security vulnerabilities. Security issues have become more and more important in such environment. Although the concept of...
| Main Authors: | , |
|---|---|
| Other Authors: | |
| Format: | Others |
| Language: | en_US |
| Published: |
2008
|
| Online Access: | http://ndltd.ncl.edu.tw/handle/9u5t6d |
| id |
ndltd-TW-096NCU05392076 |
|---|---|
| record_format |
oai_dc |
| spelling |
ndltd-TW-096NCU053920762019-05-15T19:38:19Z http://ndltd.ncl.edu.tw/handle/9u5t6d Intrusion Detection Using Function-based Sequences of System Calls 入侵偵測系統:使用以函數為基礎的系統呼叫序列 Chun-han Tseng 曾俊翰 碩士 國立中央大學 資訊工程研究所 96 Computer and network security problems cause billions in damage every year. As the use of Internet, modern computer systems are plagued from security vulnerabilities. Security issues have become more and more important in such environment. Although the concept of buffer overflows had been known for years, modern computer systems suffered from these kinds of security weaknesses constantly. This article presents an improved method for intrusion detection, which detect abnormal behaviors of a process using function-based sequences of system calls. The method is especially effective in detecting Buffer Overflow Attacks. Our method also stored these sequences through a data structure called Suffix Tree, which improved our system performance a lot. Experiments show that our method has better effectiveness and performance than previous methods. Meng-feng Tsai 蔡孟峰 2008 學位論文 ; thesis 46 en_US |
| collection |
NDLTD |
| language |
en_US |
| format |
Others
|
| sources |
NDLTD |
| description |
碩士 === 國立中央大學 === 資訊工程研究所 === 96 === Computer and network security problems cause billions in damage every year. As the use of Internet, modern computer systems are plagued from security vulnerabilities. Security issues have become more and more important in such environment. Although the concept of buffer overflows had been known for years, modern computer systems suffered from these kinds of security weaknesses constantly.
This article presents an improved method for intrusion detection, which detect abnormal behaviors of a process using function-based sequences of system calls. The method is especially effective in detecting Buffer Overflow Attacks. Our method also stored these sequences through a data structure called Suffix Tree, which improved our system performance a lot. Experiments show that our method has better effectiveness and performance than previous methods.
|
| author2 |
Meng-feng Tsai |
| author_facet |
Meng-feng Tsai Chun-han Tseng 曾俊翰 |
| author |
Chun-han Tseng 曾俊翰 |
| spellingShingle |
Chun-han Tseng 曾俊翰 Intrusion Detection Using Function-based Sequences of System Calls |
| author_sort |
Chun-han Tseng |
| title |
Intrusion Detection Using Function-based Sequences of System Calls |
| title_short |
Intrusion Detection Using Function-based Sequences of System Calls |
| title_full |
Intrusion Detection Using Function-based Sequences of System Calls |
| title_fullStr |
Intrusion Detection Using Function-based Sequences of System Calls |
| title_full_unstemmed |
Intrusion Detection Using Function-based Sequences of System Calls |
| title_sort |
intrusion detection using function-based sequences of system calls |
| publishDate |
2008 |
| url |
http://ndltd.ncl.edu.tw/handle/9u5t6d |
| work_keys_str_mv |
AT chunhantseng intrusiondetectionusingfunctionbasedsequencesofsystemcalls AT céngjùnhàn intrusiondetectionusingfunctionbasedsequencesofsystemcalls AT chunhantseng rùqīnzhēncèxìtǒngshǐyòngyǐhánshùwèijīchǔdexìtǒnghūjiàoxùliè AT céngjùnhàn rùqīnzhēncèxìtǒngshǐyòngyǐhánshùwèijīchǔdexìtǒnghūjiàoxùliè |
| _version_ |
1719092304051961856 |