LEADER 06411nam 22008295 450 001 9910143895503321 005 20200703214555.0 010 $a3-540-36084-0 024 7 $a10.1007/3-540-36084-0 035 $a(CKB)1000000000211827 035 $a(SSID)ssj0000326132 035 $a(PQKBManifestationID)11262704 035 $a(PQKBTitleCode)TC0000326132 035 $a(PQKBWorkID)10265903 035 $a(PQKB)10672515 035 $a(DE-He213)978-3-540-36084-1 035 $a(MiAaPQ)EBC3072777 035 $a(PPN)155169181 035 $a(EXLCZ)991000000000211827 100 $a20121227d2002 u| 0 101 0 $aeng 135 $aurnn#008mamaa 181 $ctxt 182 $cc 183 $acr 200 10$aRecent Advances in Intrusion Detection $e5th International Symposium, RAID 2002, Zurich, Switzerland, October 16-18, 2002, Proceedings /$fedited by Andreas Wespi, Giovanni Vigna, Luca Deri 205 $a1st ed. 2002. 210 1$aBerlin, Heidelberg :$cSpringer Berlin Heidelberg :$cImprint: Springer,$d2002. 215 $a1 online resource (X, 327 p.) 225 1 $aLecture Notes in Computer Science,$x0302-9743 ;$v2516 300 $aBibliographic Level Mode of Issuance: Monograph 311 $a3-540-00020-8 320 $aIncludes bibliographical references at the end of each chapters and index. 327 $aStepping Stone Detection -- Detecting Long Connection Chains of Interactive Terminal Sessions -- Multiscale Stepping-Stone Detection: Detecting Pairs of Jittered Interactive Streams by Exploiting Maximum Tolerable Delay -- Detecting Malicious Software by Monitoring Anomalous Windows Registry Accesses -- Anomaly Detection -- Undermining an Anomaly-Based Intrusion Detection System Using Common Exploits -- Correlation -- Analyzing Intensive Intrusion Alerts via Correlation -- A Mission-Impact-Based Approach to INFOSEC Alarm Correlation -- M2D2: A Formal Data Model for IDS Alert Correlation -- Legal Aspects / Intrusion Tolerance -- Development of a Legal Framework for Intrusion Detection -- Learning Unknown Attacks ? A Start -- Assessment of Intrusion Detection Systems -- Evaluation of the Diagnostic Capabilities of Commercial Intrusion Detection Systems -- A Stochastic Model for Intrusions -- Attacks against Computer Network: Formal Grammar-Based Framework and Simulation Tool -- Capacity Verification for High Speed Network Intrusion Detection Systems -- Adaptive Intrusion Detection Systems -- Performance Adaptation in Real-Time Intrusion Detection Systems -- Intrusion Detection Analysis -- Accurate Buffer Overflow Detection via Abstract Pay load Execution -- Introducing Reference Flow Control for Detecting Intrusion Symptoms at the OS Level -- The Effect of Identifying Vulnerabilities and Patching Software on the Utility of Network Intrusion Detection. 330 $aOn behalf of the program committee, it is our pleasure to present to you the proceedings of the Fifth Symposium on Recent Advances in Intrusion Detection (RAID). Since its ?rst edition in 1998, RAID has established itself as the main annual intrusion detection event, attracting researchers, practitioners, and v- dors from all over the world. The RAID 2002 program committee received 81 submissions (64 full papers and 17 extended abstracts) from 20 countries. This is about 50% more than last year. All submissions were carefully reviewed by at least three program comm- tee members or additional intrusion-detection experts according to the criteria ofscienti?cnovelty,importancetothe?eld,andtechnicalquality.Finalselection took place at a meeting held on May 15?16, 2002, in Oakland, USA. Sixteen full papers were selected for presentation and publication in the conference proc- dings. In addition, three extended abstracts of work in progress were selected for presentation. The program included both fundamental research and practical issues. The seven sessions were devoted to the following topics: anomaly detection, steppi- stonedetection,correlationofintrusion-detectionalarms,assessmentofintrusi- detectionsystems,intrusiontolerance,legalaspects,adaptiveintrusion-detection systems, and intrusion-detection analysis. RAID 2002 also hosted a panel on ?Cybercrime,? a topic of major concern for both security experts and the public. Marcus J. Ranum, the founder of Network Flight Recorder, Inc., delivered a keynote speech entitled ?Challenges for the Future of Intrusion Detection?. 410 0$aLecture Notes in Computer Science,$x0302-9743 ;$v2516 606 $aSystem safety 606 $aComputer science 606 $aComputer networks 606 $aOperating systems (Computers) 606 $aData encryption (Computer science) 606 $aComputers and civilization 606 $aSecurity Science and Technology$3https://scigraph.springernature.com/ontologies/product-market-codes/P31080 606 $aComputer Science, general$3https://scigraph.springernature.com/ontologies/product-market-codes/I00001 606 $aComputer Communication Networks$3https://scigraph.springernature.com/ontologies/product-market-codes/I13022 606 $aOperating Systems$3https://scigraph.springernature.com/ontologies/product-market-codes/I14045 606 $aCryptology$3https://scigraph.springernature.com/ontologies/product-market-codes/I28020 606 $aComputers and Society$3https://scigraph.springernature.com/ontologies/product-market-codes/I24040 615 0$aSystem safety. 615 0$aComputer science. 615 0$aComputer networks. 615 0$aOperating systems (Computers) 615 0$aData encryption (Computer science) 615 0$aComputers and civilization. 615 14$aSecurity Science and Technology. 615 24$aComputer Science, general. 615 24$aComputer Communication Networks. 615 24$aOperating Systems. 615 24$aCryptology. 615 24$aComputers and Society. 676 $a005.8 702 $aWespi$b Andreas$4edt$4http://id.loc.gov/vocabulary/relators/edt 702 $aVigna$b Giovanni$4edt$4http://id.loc.gov/vocabulary/relators/edt 702 $aDeri$b Luca$4edt$4http://id.loc.gov/vocabulary/relators/edt 712 12$aRAID 2002 801 0$bMiAaPQ 801 1$bMiAaPQ 801 2$bMiAaPQ 906 $aBOOK 912 $a9910143895503321 996 $aRecent Advances in Intrusion Detection$9772673 997 $aUNINA