Security Lab
Seminar
Sept. 10, 2003
Speaker: Tao Song
Topic: "Reasoning about Network Intrusion Detection Systems"
Abstract: Network-based attacks have become common and sophisticated. Intrusion
detection systems are now shifting their focus from the hosts and operating
systems to the network. We propose a hierarchical verification model that can
be used to reason the security properties of network intrusion detection system.
A requirement-driven methodology is introduced to verify the detection rules
of network intrusion detection system. Snort, for example, will be used to administrate
the proof-of-concept.