Large-scale Intrusion Detection Framework Based on Attack Strategy Analysis

Agenda

PPT Slide

Difficulties in Intrusion Detection

ID Paradigms

ID Paradigms

Real-Life Problems

IP Spoofing

SYN-flood + IP Spoofing

Intrusion Strategies

Real-life Intrusion & Detection Strategy

ID Based on Strategic Analysis

Strategy Representation Constructs

Strategy Analysis

Strategy Analysis - Verification

Strategy Analysis - Verification

Strategy Analysis - Verification

Look Ahead Adaptive Auditing

Agenda Communication

IDS Agent Communication Protocol

Conclusions