Please use this identifier to cite or link to this item: http://repositorio.unicamp.br/jspui/handle/REPOSIP/102614
Type: Artigo de evento
Title: Applying Code Coverage Analysis To Improve Anomaly-based Intrusion Detection
Author: Vilela P.
Spoto E.
Jino M.
Abstract: Even well engineered systems have security vulnerabilities. Methods, techniques and tools are developed to prevent software from having security glimpses that are exploitable by malicious users. As a last resort, intrusion detection systems monitor applications after deployment for possible intrusions. Intrusion detection systems based on anomaly detection use a set of training data to create a database of valid and legitimate execution patterns that are constantly compared to real execution patterns on a deployed system. This approach assumes that the attack pattern substantially differs from the legitimate pattern to grant an alarm and that the training data accurately represent different classes of users to minimize false positives. This paper presents a study aimed at understanding the relationship between code coverage analysis and intrusion detection. Its goal is to show that it is advantageous to incorporate software testing coverage information and use it as a guide to select training data used by an intrusion detection system.
Editor: 
Rights: fechado
Identifier DOI: 
Address: http://www.scopus.com/inward/record.url?eid=2-s2.0-1542537942&partnerID=40&md5=9e9864df95e71592cdcc76d49cc3e0f3
Date Issue: 2003
Appears in Collections:Unicamp - Artigos e Outros Documentos

Files in This Item:
There are no files associated with this item.


Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.