Embedded monitors for detecting and preventing intrusions in cryptographic and application protocols.

Thumbnail image of item number 1 in: 'Embedded monitors for detecting and preventing intrusions in cryptographic and application protocols.'.
Thumbnail image of item number 2 in: 'Embedded monitors for detecting and preventing intrusions in cryptographic and application protocols.'.
Thumbnail image of item number 3 in: 'Embedded monitors for detecting and preventing intrusions in cryptographic and application protocols.'.
Thumbnail image of item number 4 in: 'Embedded monitors for detecting and preventing intrusions in cryptographic and application protocols.'.
Showing 1-4 of 52 pages in this thesis.

PDF Version Also Available for Download.

Description

There are two main approaches for intrusion detection: signature-based and anomaly-based. Signature-based detection employs pattern matching to match attack signatures with observed data making it ideal for detecting known attacks. However, it cannot detect unknown attacks for which there is no signature available. Anomaly-based detection builds a profile of normal system behavior to detect known and unknown attacks as behavioral deviations. However, it has a drawback of a high false alarm rate. In this thesis, we describe our anomaly-based IDS designed for detecting intrusions in cryptographic and application-level protocols. Our system has several unique characteristics, such as the ability to … continued below

Creation Information

Joglekar, Sachin P. December 2003.

Context

This thesis is part of the collection entitled: UNT Theses and Dissertations and was provided by the UNT Libraries to the UNT Digital Library, a digital repository hosted by the UNT Libraries. It has been viewed 244 times. More information about this thesis can be viewed below.

Who

People and organizations associated with either the creation of this thesis or its content.

Author

Chair

Committee Members

Publisher

Rights Holder

For guidance see Citations, Rights, Re-Use.

  • Joglekar, Sachin P.

Provided By

UNT Libraries

The UNT Libraries serve the university and community by providing access to physical and online collections, fostering information literacy, supporting academic research, and much, much more.

About | Browse this Partner

Contact Us

Corrections Questions

What

Descriptive information to help identify this thesis. Follow the links below to find similar items on the Digital Library.

Description

There are two main approaches for intrusion detection: signature-based and anomaly-based. Signature-based detection employs pattern matching to match attack signatures with observed data making it ideal for detecting known attacks. However, it cannot detect unknown attacks for which there is no signature available. Anomaly-based detection builds a profile of normal system behavior to detect known and unknown attacks as behavioral deviations. However, it has a drawback of a high false alarm rate. In this thesis, we describe our anomaly-based IDS designed for detecting intrusions in cryptographic and application-level protocols. Our system has several unique characteristics, such as the ability to monitor cryptographic protocols and application-level protocols embedded in encrypted sessions, a very lightweight monitoring process, and the ability to react to protocol misuse by modifying protocol response directly.

Subjects

Keywords

Library of Congress Subject Headings

Language

Item Type

Identifier

Unique identifying numbers for this thesis in the Digital Library or other systems.

Collections

This thesis is part of the following collection of related materials.

UNT Theses and Dissertations

Theses and dissertations represent a wealth of scholarly and artistic content created by masters and doctoral students in the degree-seeking process. Some ETDs in this collection are restricted to use by the UNT community.

About | Browse this Collection

What responsibilities do I have when using this thesis?

Digital Files

When

Dates and time periods associated with this thesis.

Creation Date

  • December 2003

Added to The UNT Digital Library

  • Feb. 15, 2008, 3 p.m.

Description Last Updated

  • Jan. 15, 2014, 2:49 p.m.

Usage Statistics

When was this thesis last used?

Yesterday: 0
Past 30 days: 1
Total Uses: 244
More Statistics

Interact With This Thesis

Here are some suggestions for what to do next.

Top Search Results

We found six places within this thesis that matched your search. View Now

Start Reading

Thumbnail image of item number 1 in: 'Embedded monitors for detecting and preventing intrusions in cryptographic and application protocols.'.
Thumbnail image of item number 2 in: 'Embedded monitors for detecting and preventing intrusions in cryptographic and application protocols.'.
Thumbnail image of item number 3 in: 'Embedded monitors for detecting and preventing intrusions in cryptographic and application protocols.'.
Thumbnail image of item number 4 in: 'Embedded monitors for detecting and preventing intrusions in cryptographic and application protocols.'.

PDF Version Also Available for Download.

Citations, Rights, Re-Use

International Image Interoperability Framework

IIF Logo

We support the IIIF Presentation API

Links for Robots

Helpful links in machine-readable formats.

Archival Resource Key (ARK)

International Image Interoperability Framework (IIIF)

Metadata Formats

Images

URLs

Stats

Joglekar, Sachin P. Embedded monitors for detecting and preventing intrusions in cryptographic and application protocols., thesis, December 2003; Denton, Texas. (https://digital.library.unt.edu/ark:/67531/metadc4414/: accessed June 18, 2024), University of North Texas Libraries, UNT Digital Library, https://digital.library.unt.edu; .

Back to Top of Screen