|
| This Article | ||
| ||
| Share | ||
| Bibliographic References | ||
| Add to: | ||
 Digg  Furl  Spurl  Blink  Simpy  Google  Del.icio.us  Y!MyWeb | ||
| Search | ||
| ||
2010 18th Euromicro Conference on Parallel, Distributed and Network-based Processing
Privacy Violation Classification of Snort Ruleset
Pisa, Italy
February 17-February 19
ISBN: 978-0-7695-3939-3
| ASCII Text | x | ||
| Nils Ulltveit-Moe, Vladimir Oleshchuk, "Privacy Violation Classification of Snort Ruleset," 16th Euromicro Conference on Parallel, Distributed and Network-Based Processing (PDP 2008), pp. 654-658, 2010 18th Euromicro Conference on Parallel, Distributed and Network-based Processing, 2010. | |||
| BibTex | x | ||
| @article{ 10.1109/PDP.2010.87, author = {Nils Ulltveit-Moe and Vladimir Oleshchuk}, title = {Privacy Violation Classification of Snort Ruleset}, journal ={16th Euromicro Conference on Parallel, Distributed and Network-Based Processing (PDP 2008)}, volume = {0}, year = {2010}, issn = {1066-6192}, pages = {654-658}, doi = {http://doi.ieeecomputersociety.org/10.1109/PDP.2010.87}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, } | |||
| RefWorks Procite/RefMan/Endnote | x | ||
| TY - CONF JO - 16th Euromicro Conference on Parallel, Distributed and Network-Based Processing (PDP 2008) TI - Privacy Violation Classification of Snort Ruleset SN - 1066-6192 SP654 EP658 A1 - Nils Ulltveit-Moe, A1 - Vladimir Oleshchuk, PY - 2010 KW - IDS KW - rules KW - privacy violation KW - classification VL - 0 JA - 16th Euromicro Conference on Parallel, Distributed and Network-Based Processing (PDP 2008) ER - | |||
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/PDP.2010.87
It is important to analyse the privacy impact of Intrusion Detection System (IDS) rules, in order to understand and quantify the privacy-invasiveness of network monitoring services. The objective in this paper is to classify Snort rules according to the risk of privacy violations in the form of leaking sensitive or confidential material. The classification is based on a ruleset that formerly has been manually categorised according to our PRIvacy LEakage (PRILE) methodology. Such information can be useful both for privacy impact assessments and automated tests for detecting privacy violations. Information about potentially privacy violating rules can subsequently be used to tune the IDS rule sets, with the objective to minimise the expected amount of data privacy violations during normal operation. The paper suggests some classification tasks that can be useful both to improve the PRILE methodology and for privacy violation evaluation tools. Finally, two selected classification tasks are analysed by using a Naïve Bayes classifier.
Index Terms:
IDS, rules, privacy violation, classification
Citation:
Nils Ulltveit-Moe, Vladimir Oleshchuk, "Privacy Violation Classification of Snort Ruleset," pdp, pp.654-658, 2010 18th Euromicro Conference on Parallel, Distributed and Network-based Processing, 2010
Usage of this product signifies your acceptance of the Terms of Use.