Skip to Main content Skip to Navigation
Conference papers

Rapid Prototyping of Intrusion Detection Systems

Fabrice Kordon 1 Jean-Baptiste Voron 1 Liviu Iftode
1 MoVe - Modélisation et Vérification
LIP6 - Laboratoire d'Informatique de Paris 6
Abstract : Designing security softwares that evolve as quickly as threats is a truthful challenge. In addition, current software becomes increasingly more complex and difficult to handle even for security experts. Intrusion Detection Softwares (IDS) represent a solution that can alleviate these concerns. This paper proposes a framework to automatically build an effective online IDS which can check if the program's expected behavior is respected during the execution. The proposed framework extracts relevant information from the program's source code to build a dedicated IDS. We use the GCC compiler to produce the structure of our behavior's model and ensure the IDS is correct. Thanks to Petri nets, our framework allows program offline monitoring and simplifies the online monitoring development.
Document type :
Conference papers
Complete list of metadatas

https://hal.archives-ouvertes.fr/hal-01335149
Contributor : Lip6 Publications <>
Submitted on : Tuesday, June 21, 2016 - 5:51:07 PM
Last modification on : Thursday, March 21, 2019 - 2:40:01 PM

Identifiers

Citation

Fabrice Kordon, Jean-Baptiste Voron, Liviu Iftode. Rapid Prototyping of Intrusion Detection Systems. 18th International Workshop on Rapid System Prototyping (RSP), May 2007, Porto Alegre, Brazil. pp.89-98, ⟨10.1109/RSP.2007.34⟩. ⟨hal-01335149⟩

Share

Metrics

Record views

95