traffic intrusion signatures
RSS traffic intrusion signatures
Sort by: Relevance | Date
Application Layer Intrusion Detection for SQL Injection
White Paper Database intrusion detection systems are often based on signatures of known exploits and honey tokens, traps set in the database. Moreover, it proposes a model for an anomalous SQL detector which observes the database traffic from the perspective... [03 Jul 2008]
A Network Intrusion Detection System on IXP1200 Network Processors With Support for Large Rule Sets
White Paper It is aimed at detecting worms at high speeds by matching the payload of network packets against worm signatures at the lowest possible levels of the processing hierarchy (the microengines of an IXP1200 network processor). [30 Jun 2008]
University Medical Center Improves Security of Critical Healthcare Network
White Paper Duke Medicine's security management solution did not provide the intelligence to help the IT team better respond to identified threats - the system lacked the capability to be integrated with attack signatures or automated mitigation mechanisms. [18 Jun 2008]
An Intrusion Detection System With Active Response Generation
The solution is capable of searching for intrusion signatures inside the packets that come from multiple network interfaces simultaneously and capable of analyzing and filtering packets on any or all directions of traffic. [12 Jun 2008]
Application Layer Intrusion Detection for SQL Injection
Database intrusion detection systems are often based on signatures of known exploits and honey tokens, traps set in the database. Moreover, it proposes a model for an anomalous SQL detector which observes the database traffic from the perspective... [12 Jun 2008]
An Intrusion Detection System With Active Response Generation
White Paper The solution is capable of searching for intrusion signatures inside the packets that come from multiple network interfaces simultaneously and capable of analyzing and filtering packets on any or all directions of traffic. [12 Jun 2008]
On the Fly Pattern Matching for Intrusion Detection With Snort
Then, efficient multisearch methods and suitable datastructure for signatures were used. Intrusion Detection Systems are important tools for system administrators to protect their network. The method has been successfully implemented as an... [03 Jun 2008]
Honeycomb - Creating Intrusion Detection Signatures Using Honeypots
White Paper This paper describes a system for automated generation of attack signatures for network intrusion detection systems. The system successfully created precise traffic signatures that otherwise would have required the skills and time of a security... [21 May 2008]
SIFT: Snort Intrusion Filter for TCP
White Paper SIFT selectively forwards IP packets that contain questionable headers or defined signatures to a PC where complete rule processing is performed. High-level intrusion rules mapped directly into hardware separate malicious content from benign... [30 Oct 2007]
NetSpy: Automatic Generation of Spyware Signatures for NIDS
White Paper This paper presents NetSpy, a tool to automatically generate network-level signatures for spyware. Such a signature can be used by network intrusion detection systems to detect spyware installations in large networks. [06 Jul 2007]
Understand how intrusion prevention systems (IPS) use attack signatures
White Paper Learn how IPS devices use signatures to identify activity in your network traffic and on hosts on your network. Chapter: Chapter 2: Signatures and Actions This sample chapter, taken from Intrusion Prevention Fundamentals, examines signature types... [16 May 2006]
Analysis: The network is the security
Comment To minimize malicious-code propagation, every desktop will be scanned for malicious code, patch levels and antivirus signatures before it is granted access to network resources. This means that the network will perform the same functions that... [14 Jul 2004]
Network- vs. Host-based Intrusion Detection: A Guide to Intrusion Detection Technology
White Paper In either case, these products look for attack signatures, specific patterns that usually indicate malicious or suspicious intent. When an IDS looks for attack signatures in log files, it’s host-based. [24 Feb 2004]
Intrusion Detection with MOM - Going Above the Wire
White Paper By focusing on the WAN/LAN layer traffic and looking for “exception traffic” - signatures within packets that are indicative of malicious intent - properly formed, legal traffic is virtually ignored. With attackers getting more sophisticated, the... [24 Feb 2004]
Intrusion Detection with MOM - Going Above
White Paper By focusing on the WAN/LAN layer traffic and looking for “exception traffic” - signatures within packets that are indicative of malicious intent - properly formed, legal traffic is virtually ignored. At the “wire” or network layer, there are... [24 Feb 2004]
Keep updated for stories matching traffic intrusion signatures via RSS
