LEADER 05826nam 22007335 450 001 996465823603316 005 20200702091442.0 024 7 $a10.1007/b137798 035 $a(CKB)1000000000213094 035 $a(SSID)ssj0000318526 035 $a(PQKBManifestationID)11263352 035 $a(PQKBTitleCode)TC0000318526 035 $a(PQKBWorkID)10309084 035 $a(PQKB)10903133 035 $a(DE-He213)978-3-540-31645-9 035 $a(MiAaPQ)EBC3068347 035 $a(PPN)123095832 035 $a(EXLCZ)991000000000213094 100 $a20100715d2005 u| 0 101 0 $aeng 135 $aurnn|008mamaa 181 $ctxt 182 $cc 183 $acr 200 10$aDetection of Intrusions and Malware, and Vulnerability Assessment$b[electronic resource] $eSecond International Conference, DIMVA 2005, Vienna, Austria, July 7-8, 2005, Proceedings /$fedited by Klaus Julisch, Christopher Kruegel 205 $a1st ed. 2005. 210 1$aBerlin, Heidelberg :$cSpringer Berlin Heidelberg :$cImprint: Springer,$d2005. 215 $a1 online resource (X, 241 p.) 225 1 $aSecurity and Cryptology ;$v3548 300 $aBibliographic Level Mode of Issuance: Monograph 311 08$aPrinted edition: 9783540266136 320 $aIncludes bibliographical references and author index. 327 $aObfuscated Code Detection -- Analyzing Memory Accesses in Obfuscated x86 Executables -- Hybrid Engine for Polymorphic Shellcode Detection -- Honeypots -- Experiences Using Minos as a Tool for Capturing and Analyzing Novel Worms for Unknown Vulnerabilities -- A Pointillist Approach for Comparing Honeypots -- Vulnerability Assessment and Exploit Analysis -- Automatic Detection of Attacks on Cryptographic Protocols: A Case Study -- METAL ? A Tool for Extracting Attack Manifestations -- Flow-Level Traffic Analysis of the Blaster and Sobig Worm Outbreaks in an Internet Backbone -- Anomaly Detection -- A Learning-Based Approach to the Detection of SQL Attacks -- Masquerade Detection via Customized Grammars -- A Prevention Model for Algorithmic Complexity Attacks -- Misuse Detection -- Detecting Malicious Code by Model Checking -- Improving the Efficiency of Misuse Detection -- Distributed Intrusion Detection and IDS Testing -- Enhancing the Accuracy of Network-Based Intrusion Detection with Host-Based Context -- TCPtransform: Property-Oriented TCP Traffic Transformation. 330 $aOn behalf of the Program Committee, it is our pleasure to present to you the proceedings of the 2nd GI SIG SIDAR Conference on Detection of Intrusions & Malware, and Vulnerability Assessment (DIMVA). DIMVA is organized by the Special Interest Group Security ? Intrusion Detection and Response (SIDAR) of the German Informatics Society (GI) as an annual conference that brings together experts from throughout the world to discuss the state of the art in the areas of intrusion detection, detection of malware, and assessment of vulnerabilities. TheDIMVA2005ProgramCommitteereceived51submissionsfrom18co- tries. This represents an increase of approximately 25% compared with the n- ber of submissions last year. All submissions were carefully reviewed by at least three Program Committee members or external experts according to the cri- ria of scienti?c novelty, importance to the ?eld, and technical quality. The ?nal selection took place at a meeting held on March 18, 2005, in Zurich, Switz- land. Fourteen full papers were selected for presentation and publication in the conference proceedings. In addition, three papers were selected for presentation in the industry track of the conference. The program featured both theoretical and practical research results, which were grouped into six sessions. Philip Att?eld from the Northwest Security Institute gave the opening keynote speech. The slides presented by the authors are available on the DIMVA 2005 Web site at http://www.dimva.org/dimva2005 We sincerely thank all those who submitted papers as well as the Program Committee members and the external reviewers for their valuable contributions. 410 0$aSecurity and Cryptology ;$v3548 606 $aData encryption (Computer science) 606 $aManagement information systems 606 $aComputer science 606 $aComputer communication systems 606 $aOperating systems (Computers) 606 $aComputers and civilization 606 $aCryptology$3https://scigraph.springernature.com/ontologies/product-market-codes/I28020 606 $aManagement of Computing and Information Systems$3https://scigraph.springernature.com/ontologies/product-market-codes/I24067 606 $aComputer Communication Networks$3https://scigraph.springernature.com/ontologies/product-market-codes/I13022 606 $aOperating Systems$3https://scigraph.springernature.com/ontologies/product-market-codes/I14045 606 $aComputers and Society$3https://scigraph.springernature.com/ontologies/product-market-codes/I24040 615 0$aData encryption (Computer science). 615 0$aManagement information systems. 615 0$aComputer science. 615 0$aComputer communication systems. 615 0$aOperating systems (Computers). 615 0$aComputers and civilization. 615 14$aCryptology. 615 24$aManagement of Computing and Information Systems. 615 24$aComputer Communication Networks. 615 24$aOperating Systems. 615 24$aComputers and Society. 676 $a005.8 702 $aJulisch$b Klaus$4edt$4http://id.loc.gov/vocabulary/relators/edt 702 $aKruegel$b Christopher$4edt$4http://id.loc.gov/vocabulary/relators/edt 906 $aBOOK 912 $a996465823603316 996 $aDetection of Intrusions and Malware, and Vulnerability Assessment$92889854 997 $aUNISA