The LAIDS/LIDS Framework for Systematic IPS Design

I
IWIA
2006
Fourth IEEE International Workshop on Information Assurance (IWIA'06)
Abstract - The LAIDS/LIDS Framework for Systematic IPS Design

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Simon P. Chung Articles by Aloysius K. Mok

Fourth IEEE International Workshop on Information Assurance (IWIA'06)

Royal Holloway, United Kingdom

April 13-April 14

ISBN: 0-7695-2564-4

	ASCII Text	x
	Simon P. Chung, Aloysius K. Mok, "The LAIDS/LIDS Framework for Systematic IPS Design," Innovative Architecture for Future Generation High-Performance Processors and Systems, International Workshop on, pp. 3-11, Fourth IEEE International Workshop on Information Assurance (IWIA'06), 2006.

	BibTex	x
	@article{ 10.1109/IWIA.2006.21, author = {Simon P. Chung and Aloysius K. Mok}, title = {The LAIDS/LIDS Framework for Systematic IPS Design}, journal ={Innovative Architecture for Future Generation High-Performance Processors and Systems, International Workshop on}, volume = {0}, year = {2006}, isbn = {0-7695-2564-4}, pages = {3-11}, doi = {http://doi.ieeecomputersociety.org/10.1109/IWIA.2006.21}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Innovative Architecture for Future Generation High-Performance Processors and Systems, International Workshop on TI - The LAIDS/LIDS Framework for Systematic IPS Design SN - 0-7695-2564-4 SP3 EP11 A1 - Simon P. Chung, A1 - Aloysius K. Mok, PY - 2006 KW - null VL - 0 JA - Innovative Architecture for Future Generation High-Performance Processors and Systems, International Workshop on ER -

Simon P. Chung, University of Texas at Austin

Aloysius K. Mok, University of Texas at Austin

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/IWIA.2006.21

The recent outbreaks of extremely fast spreading worms highlight the inadequacy of the current patching approach. Intrusion prevention systems (IPSs) that automatically generate and apply protection to client systems have been proposed as a solution. Despite all the effort in this area, the design of IPSs remains a difficult, ad-hoc process. In this paper, we propose the LAIDS/LIDS framework for systematic design of IPS. A major advantage of our framework is that IPSs designed in this framework have a very simple countermeasure-generation process. To better illustrate our idea, we have implemented a prototype IPS, the Lazy Shepherding IPS, based on our framework. Evaluation shows that the prototype is effective against all tested attacks, and incur an overhead of less than 3% when it is configured to defend against a large number of attacks. Our prototype also avoids a lot of practical problems faced by many other IPSs.

Citation:

Simon P. Chung, Aloysius K. Mok, "The LAIDS/LIDS Framework for Systematic IPS Design," iwia, pp.3-11, Fourth IEEE International Workshop on Information Assurance (IWIA'06), 2006

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.