Forum for Science, Industry and Business

Sponsored by:     3M 
Search our Site:

 

Advances in Computer Network Intrusion Detection

01.10.2002


Researchers from Oxford University’s Computing Laboratory have developed techniques to spot malicious attacks on computer networks, that include the use of Inductive Logic Programming (ILP) techniques to automatically determine the semantics of novel attack strategies.



Intrusions often take place where there are vulnerabilities within computer systems. For example, one of the most common of these is the buffer overflow, where an attacker sends overly long transactions to a server. The aim is to overflow the server’s buffer with code that runs automatically, allowing the attacker to execute malicious commands via the network.

A recent example was the “Code Red” worm released on Friday 13th July 2001. The attack caused havoc for programmes running on Microsoft Internet Information Server and slowed down Internet traffic considerably. No one was able to stop it automatically; few recognised what strategy the attack was using and system administrators had to look for it manually in the registers of their systems.


Existing [firewall and security] systems try to detect malicious transactions by comparing the signatures of known attacks. However, attackers can simply change subtle parameters in their attack, without altering the strategy they are using, and easily thwart such systems. Importantly, few technologies have been implemented to detect broad classes of attack strategies or to automatically generate detection strategies by learning from novel attacks.

Code Red proved that self-replicating attacks are dangerous and that systems are vulnerable. Current detection methods based on attack signatures rely on the manual analysis of registers and logs and are ineffective in the long term.

The semantic intrusion detection system developed at Oxford uses general rules rather than signatures to determine whether transactions are attempting to use a known attack strategy. Furthermore, such general rules can be generated from examples of attack attempts using the technology of ILP. An ILP system relies on knowledge represented as sets of general rules which are used explain new examples of intrusions and little interaction is required once this knowledge has been imparted.

Oxford University’s technology transfer company, Isis Innovation, has filed a UK patent application on the principles behind this invention and is interested to hear from companies that wish to license this technology for further development.

Jennifer Johnson | alfa
Further information:
http://www.isis-innovation.com

More articles from Information Technology:

nachricht Computing at the Speed of Light
22.05.2015 | University of Utah

nachricht NOAA's GOES-R satellite begins environmental testing
22.05.2015 | NASA/Goddard Space Flight Center

All articles from Information Technology >>>

The most recent press releases about innovation >>>

Die letzten 5 Focus-News des innovations-reports im Überblick:

Im Focus: Basel Physicists Develop Efficient Method of Signal Transmission from Nanocomponents

Physicists have developed an innovative method that could enable the efficient use of nanocomponents in electronic circuits. To achieve this, they have developed a layout in which a nanocomponent is connected to two electrical conductors, which uncouple the electrical signal in a highly efficient manner. The scientists at the Department of Physics and the Swiss Nanoscience Institute at the University of Basel have published their results in the scientific journal “Nature Communications” together with their colleagues from ETH Zurich.

Electronic components are becoming smaller and smaller. Components measuring just a few nanometers – the size of around ten atoms – are already being produced...

Im Focus: IoT-based Advanced Automobile Parking Navigation System

Development and implementation of an advanced automobile parking navigation platform for parking services

To fulfill the requirements of the industry, PolyU researchers developed the Advanced Automobile Parking Navigation Platform, which includes smart devices,...

Im Focus: First electrical car ferry in the world in operation in Norway now

  • Siemens delivers electric propulsion system and charging stations with lithium-ion batteries charged from hydro power
  • Ferry only uses 150 kilowatt hours (kWh) per route and reduces cost of fuel by 60 percent
  • Milestone on the road to operating emission-free ferries

The world's first electrical car and passenger ferry powered by batteries has entered service in Norway. The ferry only uses 150 kWh per route, which...

Im Focus: Into the ice – RV Polarstern opens the arctic season by setting course for Spitsbergen

On Tuesday, 19 May 2015 the research icebreaker Polarstern will leave its home port in Bremerhaven, setting a course for the Arctic. Led by Dr Ilka Peeken from the Alfred Wegener Institute, Helmholtz Centre for Polar and Marine Research (AWI) a team of 53 researchers from 11 countries will investigate the effects of climate change in the Arctic, from the surface ice floes down to the seafloor.

RV Polarstern will enter the sea-ice zone north of Spitsbergen. Covering two shallow regions on their way to deeper waters, the scientists on board will focus...

Im Focus: Gel filled with nanosponges cleans up MRSA infections

Nanoengineers at the University of California, San Diego developed a gel filled with toxin-absorbing nanosponges that could lead to an effective treatment for skin and wound infections caused by MRSA (methicillin-resistant Staphylococcus aureus), an antibiotic-resistant bacteria. This "nanosponge-hydrogel" minimized the growth of skin lesions on mice infected with MRSA - without the use of antibiotics. The researchers recently published their findings online in Advanced Materials.

To make the nanosponge-hydrogel, the team mixed nanosponges, which are nanoparticles that absorb dangerous toxins produced by MRSA, E. coli and other...

All Focus news of the innovation-report >>>

Anzeige

Anzeige

Event News

International symposium: trends in spatial analysis and modelling for a more sustainable land use

20.05.2015 | Event News

15th conference of the International Association of Colloid and Interface Scientists

18.05.2015 | Event News

EHFG 2015: Securing health in Europe. Balancing priorities, sharing responsibilities

12.05.2015 | Event News

 
Latest News

Mesoporous Particles for the Development of Drug Delivery System Safe to Human Bodies

22.05.2015 | Materials Sciences

Computing at the Speed of Light

22.05.2015 | Information Technology

Development of Gold Nanoparticles That Control Osteogenic Differentiation of Stem Cells

22.05.2015 | Materials Sciences

VideoLinks
B2B-VideoLinks
More VideoLinks >>>