Specification and Detection of TCP/IP Based Attacks Using the ADM-Logic

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Meriam Ben Ghorbel Articles by Mehdi Talbi Articles by Mohamed Mejri

The Second International Conference on Availability, Reliability and Security (ARES'07)

Vienna, Austria

April 10-April 13

ISBN: 0-7695-2775-2

	ASCII Text	x
	Meriam Ben Ghorbel, Mehdi Talbi, Mohamed Mejri, "Specification and Detection of TCP/IP Based Attacks Using the ADM-Logic," Availability, Reliability and Security, International Conference on, pp. 206-212, The Second International Conference on Availability, Reliability and Security (ARES'07), 2007.

	BibTex	x
	@article{ 10.1109/ARES.2007.142, author = {Meriam Ben Ghorbel and Mehdi Talbi and Mohamed Mejri}, title = {Specification and Detection of TCP/IP Based Attacks Using the ADM-Logic}, journal ={Availability, Reliability and Security, International Conference on}, volume = {0}, year = {2007}, isbn = {0-7695-2775-2}, pages = {206-212}, doi = {http://doi.ieeecomputersociety.org/10.1109/ARES.2007.142}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Availability, Reliability and Security, International Conference on TI - Specification and Detection of TCP/IP Based Attacks Using the ADM-Logic SN - 0-7695-2775-2 SP206 EP212 A1 - Meriam Ben Ghorbel, A1 - Mehdi Talbi, A1 - Mohamed Mejri, PY - 2007 KW - null VL - 0 JA - Availability, Reliability and Security, International Conference on ER -

Meriam Ben Ghorbel, Digital Security Unit, Higher School of Communication,Tunis, Tunisia

Mehdi Talbi, Digital Security Unit, Higher School of Communication,Tunis, Tunisia

Mohamed Mejri, Laval University,Quebec, Canada

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ARES.2007.142

Intrusion detection systems (IDS) are considered nowadays as one of the most important components in the security architecture of information systems. For a Misusebased IDS, also known as signature based IDS, the effi- ciency of detection is highly correlated to the quality of signatures. It is therefore very important to select a suitable formal language that provides both high expressiveness and simplicity when specifying attack signatures. It is also fundamental to have a user friendly and automatic tool allowing the specification and the verification of these signatures. This paper shows the efficiency and the suitability of the ADM-logic as a and formal language to specify a large variety of signatures characterizing attacks based on the TCP/IP protocols. A prototype of an IDS based on this logic will be also introduced.

Citation:

Meriam Ben Ghorbel, Mehdi Talbi, Mohamed Mejri, "Specification and Detection of TCP/IP Based Attacks Using the ADM-Logic," ares, pp.206-212, The Second International Conference on Availability, Reliability and Security (ARES'07), 2007

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.