How Intrusion Detection Can Improve Software Decoy Applications

Abstract

This research concerns information security and computer-network defense. It addresses how to handle the information of log files and intrusion-detection systems to recognize when a system is under attack. But the goal is not the usual one of denying access to the attacker but providing a justification for deceptive actions to fool the attacker. We implemented a simple demonstration of how two different kinds of open-source intrusion-detection systems can efficiently pool data for this purpose.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Mar 01, 2003
Accession Number
ADA415028

Entities

People

  • Valter Monteiro Jr

Organizations

  • Naval Postgraduate School

Tags

Communities of Interest

  • Cyber
  • Materials and Manufacturing Processes

DTIC Thesaurus Topics

  • Computer Network Security
  • Computer Programming
  • Computer Programs
  • Computers
  • Cybersecurity
  • Databases
  • Detection
  • Detectors
  • Information Systems
  • Information Warfare
  • Intrusion
  • Intrusion Detection
  • Intrusion Detection Systems
  • Intrusion Detectors
  • Network Science
  • Operating Systems
  • Port Scanners

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Systems Analysis and Design