Specification and Detection of TCP/IP Based Attacks Using the ADM-Logic

Meriam Ben Ghorbel; Mehdi Talbi; Mohamed Mejri

doi:10.1109/ARES.2007.142

A
ARES
2007
The Second International Conference on Availability, Reliability and Security (ARES'07)
Abstract - Specification and Detection of TCP/IP Based Attacks Using the ADM-Logic

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/EndNote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Meriam Ben Ghorbel Articles by Mehdi Talbi Articles by Mohamed Mejri

The Second International Conference on Availability, Reliability and Security (ARES'07)

Specification and Detection of TCP/IP Based Attacks Using the ADM-Logic

Vienna, Austria

April 10-April 13

ISBN: 0-7695-2775-2

	ASCII Text	x
	Meriam Ben Ghorbel, Mehdi Talbi, Mohamed Mejri, "Specification and Detection of TCP/IP Based Attacks Using the ADM-Logic," 2012 Seventh International Conference on Availability, Reliability and Security, pp. 206-212, The Second International Conference on Availability, Reliability and Security (ARES'07), 2007.

	BibTex	x
	@article{ 10.1109/ARES.2007.142, author = {Meriam Ben Ghorbel and Mehdi Talbi and Mohamed Mejri}, title = {Specification and Detection of TCP/IP Based Attacks Using the ADM-Logic}, journal ={2012 Seventh International Conference on Availability, Reliability and Security}, volume = {0}, year = {2007}, isbn = {0-7695-2775-2}, pages = {206-212}, doi = {http://doi.ieeecomputersociety.org/10.1109/ARES.2007.142}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - 2012 Seventh International Conference on Availability, Reliability and Security TI - Specification and Detection of TCP/IP Based Attacks Using the ADM-Logic SN - 0-7695-2775-2 SP206 EP212 A1 - Meriam Ben Ghorbel, A1 - Mehdi Talbi, A1 - Mohamed Mejri, PY - 2007 KW - null VL - 0 JA - 2012 Seventh International Conference on Availability, Reliability and Security ER -

Meriam Ben Ghorbel, Digital Security Unit, Higher School of Communication,Tunis, Tunisia

Mehdi Talbi, Digital Security Unit, Higher School of Communication,Tunis, Tunisia

Mohamed Mejri, Laval University,Quebec, Canada

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ARES.2007.142

Intrusion detection systems (IDS) are considered nowadays as one of the most important components in the security architecture of information systems. For a Misusebased IDS, also known as signature based IDS, the effi- ciency of detection is highly correlated to the quality of signatures. It is therefore very important to select a suitable formal language that provides both high expressiveness and simplicity when specifying attack signatures. It is also fundamental to have a user friendly and automatic tool allowing the specification and the verification of these signatures. This paper shows the efficiency and the suitability of the ADM-logic as a and formal language to specify a large variety of signatures characterizing attacks based on the TCP/IP protocols. A prototype of an IDS based on this logic will be also introduced.

Citation:

Meriam Ben Ghorbel, Mehdi Talbi, Mohamed Mejri, "Specification and Detection of TCP/IP Based Attacks Using the ADM-Logic," ares, pp.206-212, The Second International Conference on Availability, Reliability and Security (ARES'07), 2007

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.