Scalable Intrusion Detection and Response Framework

Abstract

This effort developed a prototype scalable intrusion detection and response framework that hosts a set of intrusion detection and response technologies that demonstrate scalability in a high-assurance environment and ease of deployment as well as overcoming some of the limitations of traditional intrusion detection systems. This environment allows a developer to build an intrusion detection system without having to be concerned about the low-level, system- dependent details such as how to access built-in operating systems and hardware security functions, how to make a process on one computer communicate to a process on another computer, how to deploy an intrusion detection system, etc. This SIDF framework provides an open environment that sustains a wide variety of intrusion detection agents. The open architecture of this framework allows for a varying set of agents to be developed by a wide range of organizations.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Oct 01, 2002
Accession Number
ADA408445

Entities

People

  • Mark E. Reilly

Tags

Communities of Interest

  • Biomedical

DTIC Thesaurus Topics

  • Air Force Research Laboratories
  • Basic Programming Language
  • Change Detection
  • Computer Programming
  • Computer Programs
  • Computer Science
  • Computers
  • Cybersecurity
  • Data Compression
  • Detection
  • Information Systems
  • Intrusion Detection
  • Intrusion Detection Systems
  • Intrusion Detectors
  • Operating Systems
  • Security
  • Software Agents

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Distributed Systems and Data Platform Development