Network Intrusion Detection and Prevention: Concepts and Techniques

✍ Scribed by Ali A. Ghorbani, Wei Lu, Mahbod Tavallaee (auth.)

Publisher: Springer US
Year: 2010
Tongue: English
Leaves: 223
Series: Advances in Information Security 47
Edition: 1
Category: Library

No coin nor oath required. For personal study only.

✦ Synopsis

With the complexity of today's networks, it is impossible to know you are actually secure. You can prepare your network's defenses, but what threats will be thrown at it, what combinations will be tried, and what directions they will come from are all unknown variables. Most medium and large-scale network infrastructures include multiple high-speed connections to the Internet and support many customer collaborative networks, thousands of internal users and various web servers. Many of these systems are faced with an ever-increasing likelihood of unplanned downtime due to various attacks and security breaches. In this environment of uncertainty, which is full of hackers and malicious threats, those systems that are the best at maintaining the continuity of their services (i.e., survive the attacks) enjoy a significant competitive advantage. Minimizing unexpected and unplanned downtime can be done by identifying, prioritizing and defending against misuse, attacks and vulnerabilities.

Intrusion Detection and Prevention is a rapidly growing field that deals with detecting and responding to malicious network traffic and computer misuse. Intrusion detection is the process of identifying and (possibly) responding to malicious activities targeted at computing and network resources. Any hardware or software automation that monitors, detects or responds to events occurring in a network or on a host computer is considered relevant to the intrusion detection approach. Different intrusion detection systems provide varying functionalities and benefits.

Network Intrusion Detection and Prevention: Concepts and Techniques provides detailed and concise information on different types of attacks, theoretical foundation of attack detection approaches, implementation, data collection, evaluation, and intrusion response. Additionally, it provides an overview of some of the commercially/publicly available intrusion detection and response systems. On the topic of intrusion detection system it is impossible to include everything there is to say on all subjects. However, we have tried to cover the most important and common ones.

Network Intrusion Detection and Prevention: Concepts and Techniques is designed for researchers and practitioners in industry. This book is suitable for advanced-level students in computer science as a reference book as well.

✦ Table of Contents

Front Matter....Pages 1-16
Network Attacks....Pages 1-25
Detection Approaches....Pages 27-53
Data Collection....Pages 55-71
Theoretical Foundation of Detection....Pages 73-114
Architecture and Implementation....Pages 115-127
Alert Management and Correlation....Pages 129-160
Evaluation Criteria....Pages 161-183
Intrusion Response....Pages 185-198
Back Matter....Pages 1-14

✦ Subjects

Systems and Data Security; Computer Communication Networks; Data Encryption; Information Systems Applications (incl.Internet); Computer Systems Organization and Communication Networks

📜 SIMILAR VOLUMES

Network Intrusion Detection and Preventi

📁 Network Intrusion Detection and Prevention: Concepts and Techniques

✍ Ali A. Ghorbani, Wei Lu, Mahbod Tavallaee (auth.) 📂 Library 📅 2010 🏛 Springer US 🌐 English

<p><P>With the complexity of today's networks, it is impossible to know you are actually secure. You can prepare your network's defenses, but what threats will be thrown at it, what combinations will be tried, and what directions they will come from are all unknown variables. Most medium and large-s

Network Intrusion Detection and Preventi

📁 Network Intrusion Detection and Prevention: Concepts and Techniques

✍ Ali A. Ghorbani, Wei Lu, Mahbod Tavallaee 📂 Library 📅 2010 🏛 Springer 🌐 English

Network traffic anomaly detection and pr

📁 Network traffic anomaly detection and prevention : concepts, techniques, and tools

✍ Bhattacharyya, Dhruba K.; Bhuyan, Monowar H.; Kalita, Jugal Kumar 📂 Library 📅 2017 🏛 Springer 🌐 English

<p>This indispensable text/reference presents a comprehensive overview on the detection and prevention of anomalies in computer network traffic, from coverage of the fundamental theoretical concepts to in-depth analysis of systems and methods. Readers will benefit from invaluable practical guidance

SCADA Security: Machine Learning Concept

📁 SCADA Security: Machine Learning Concepts for Intrusion Detection and Prevention

✍ Abdulmohsen Almalawi; Zahir Tari; Adil Fahad; Xun Yi 📂 Library 📅 2020 🏛 John Wiley & Sons 🌐 English

Examines the design and use of Intrusion Detection Systems (IDS) to secure Supervisory Control and Data Acquisition (SCADA) systems Cyber-attacks on SCADA systems the control system architecture that uses computers, networked data communications, and graphical user interfaces for high-level process

SCADA Security: Machine Learning Concept

📁 SCADA Security: Machine Learning Concepts for Intrusion Detection and Prevention

✍ Abdulmohsen Almalawi; Zahir Tari; Adil Fahad; Xun Yi 📂 Library 📅 2021 🏛 Wiley 🌐 English

Examines the design and use of Intrusion Detection Systems (IDS) to secure Supervisory Control and Data Acquisition (SCADA) systems Cyber-attacks on SCADA systems—the control system architecture that uses computers, networked data communications, and graphical user interfaces for high-level process

Intrusion Detection and Prevention

📁 Intrusion Detection and Prevention

✍ Carl Endorf, Gene Schultz, Jim Mellander 📂 Library 📅 2003 🏛 McGraw-Hill Osborne Media 🌐 English

Authors Carl Endorf, Eugene Schultz, and Jim Mellander deliver the hands-on implementation techniques that IT professionals need. Learn to implement the top intrusion detection products into real-world networked environments and covers the most popular intrusion detection tools including Internet Se