Please use this identifier to cite or link to this item:
DC FieldValue
dc.titleFeedback control in intrusion detection systems
dc.contributor.authorZHU HANLE
dc.identifier.citationZHU HANLE (2005-11-11). Feedback control in intrusion detection systems. ScholarBank@NUS Repository.
dc.description.abstractReal Time Network-based Intrusion Detection Systems (RT-IDSs) attempt to detect and respond to security violations for information systems in real time, i.e. while they are under deployment. One determinative aspect to consider when designing RT-IDSs is how to keep these IDSs functional under overload attacks. When overload attack happens, the RT-IDS becomes vulnerable to precisely timed malicious access, even if the IDS has corresponding rules capable of detecting the attack. To counteract these attacks, researchers have proposed an adaptive scheme which adjusts the rule portfolio of RT-IDS according to the feedback information from network traffic. In this thesis, the adaptive behaviors of RT-IDS are tested in a software based network test-bed. Feedback information other than network traffic is considered to decide when to configure the rule portfolio of RT-IDS. Different feedback strategies are suggested and implemented in simulation environment and their performances are compared and analyzed.
dc.subjectIntrusion detection system (IDS), real time detection, overload attack, network test-bed, knapsack problem, feedback.
dc.contributor.departmentELECTRICAL & COMPUTER ENGINEERING
dc.contributor.supervisorXIANG CHENG
dc.contributor.supervisorLEE TONG HENG
dc.description.degreeconferredMASTER OF ENGINEERING
Appears in Collections:Master's Theses (Open)

Show simple item record
Files in This Item:
File Description SizeFormatAccess SettingsVersion 
thesis_final_revised.pdf1.74 MBAdobe PDF



Google ScholarTM


Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.