Protocol Analysis in Intrusion Detection Using Decision Tree

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Tarek Abbes Articles by Adel Bouhoula Articles by Micha?l Rusinowitch

International Conference on Information Technology: Coding and Computing (ITCC'04) Volume 1

Las Vegas, Nevada

April 05-April 07

ISBN: 0-7695-2108-8

	ASCII Text	x
	Tarek Abbes, Adel Bouhoula, Micha?l Rusinowitch, "Protocol Analysis in Intrusion Detection Using Decision Tree," Information Technology: Coding and Computing, International Conference on, vol. 1, pp. 404, International Conference on Information Technology: Coding and Computing (ITCC'04) Volume 1, 2004.

	BibTex	x
	@article{ 10.1109/ITCC.2004.1286488, author = {Tarek Abbes and Adel Bouhoula and Micha?l Rusinowitch}, title = {Protocol Analysis in Intrusion Detection Using Decision Tree}, journal ={Information Technology: Coding and Computing, International Conference on}, volume = {1}, year = {2004}, isbn = {0-7695-2108-8}, pages = {404}, doi = {http://doi.ieeecomputersociety.org/10.1109/ITCC.2004.1286488}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Information Technology: Coding and Computing, International Conference on TI - Protocol Analysis in Intrusion Detection Using Decision Tree SN - 0-7695-2108-8 SP EP A1 - Tarek Abbes, A1 - Adel Bouhoula, A1 - Micha?l Rusinowitch, PY - 2004 KW - null VL - 1 JA - Information Technology: Coding and Computing, International Conference on ER -

Tarek Abbes, LORIA/INRIA-Lorraine, France

Adel Bouhoula, SUP'COM, Tunisie

Micha?l Rusinowitch, LORIA/INRIA-Lorraine, France

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ITCC.2004.1286488

Network based intrusion detection are the most deployed IDS. They frequently rely on signature matching detection method and focus on the security of low level network protocols. Because of the large number of false positives from one side, and the incapacity to detect some attack types from another side, IDS must allow more interest to the monitoring of application level protocols.

We propose in this paper a combination of pattern matching and protocol analysis approaches. While the first method of detection relies on a multipattern matching strategy, the second one benefits from an efficient decision tree adaptative to the network traffic characteristics.

Citation:

Tarek Abbes, Adel Bouhoula, Micha?l Rusinowitch, "Protocol Analysis in Intrusion Detection Using Decision Tree," itcc, vol. 1, pp.404, International Conference on Information Technology: Coding and Computing (ITCC'04) Volume 1, 2004

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.