CONFERENCE PROCEEDINGS
Advanced Search
Home > Proceedings > Volume 8408 > Article
Paper
29 May 2012 RISE: Relational-Integrity-Sensitive-Encoding and data aggregation for intrusion detection
Hasan Cam
Author Affiliations +
Proceedings Volume 8408, Cyber Sensing 2012; 840809 (2012) https://doi.org/10.1117/12.919343
Event: SPIE Defense, Security, and Sensing, 2012, Baltimore, Maryland, United States
Abstract
Attacks aim at exploiting vulnerabilities of a program to gain control over its execution. By analyzing the program semantics, relational integrity, and execution paths, this paper presents a relationalintegrity approach to enhance the effectiveness of intrusion detection and prevention systems for malicious program traits. The basic idea is to first identify the main relational properties of program statements with respect to variables and operations like load and store and, then, to decide which relations could be checked through program statements or the guards inserted at the vulnerable points of program. These relational statements are represented by ordered binary decisions diagrams that are constructed for the entire program as well as the overlapping code partitions. When a host-based intrusion detection system monitors the execution of a program by checking the system calls of a process or the function calls of a driver, it may generate alerts for potential exploits. This paper also addresses data aggregation of alerts by considering their attributes and various probability distribution functions, where the Dempster's rule of combination is extended to aggregate data for dependent evidences as well.
© (2012) COPYRIGHT Society of Photo-Optical Instrumentation Engineers (SPIE). Downloading of the abstract is permitted for personal use only.
Citation Download Citation
Hasan Cam "RISE: Relational-Integrity-Sensitive-Encoding and data aggregation for intrusion detection", Proc. SPIE 8408, Cyber Sensing 2012, 840809 (29 May 2012); https://doi.org/10.1117/12.919343
ACCESS THE FULL ARTICLE
ORGANIZATIONAL
Sign in with credentials provided by your organization.
INSTITUTIONAL
Select your institution to access the SPIE Digital Library.
SELECT YOUR INSTITUTION
PERSONAL
Sign in with your SPIE account to access your personal subscriptions or to use specific features such as save to my library, sign up for alerts, save searches, etc.
PERSONAL SIGN IN
No SPIE Account? Create one
PURCHASE THIS CONTENT
SUBSCRIBE TO DIGITAL LIBRARY
50 downloads per 1-year subscription
Members: $195
Non-members: $335 ADD TO CART
25 downloads per 1 - year subscription
Members: $145
Non-members: $250 ADD TO CART
PURCHASE SINGLE ARTICLE
Includes PDF, HTML & Video, when available
Members: $17.00
Non-members: $21.00 ADD TO CART
PROCEEDINGS
 14 PAGES
DOWNLOAD PAPER SAVE TO MY LIBRARY
GET CITATION
Advertisement
Advertisement
RIGHTS & PERMISSIONS
Get copyright permission  Get copyright permission on Copyright Marketplace
KEYWORDS
Computer intrusion detection
Binary data
Sensors
Statistical analysis
Computing systems
Network architectures
Computer programming
RELATED CONTENT
Subscribe to Digital Library
Receive Erratum Email Alert
Back to Top