Publication: A functional framework to evade network IDS
dc.affiliation.dpto | UC3M. Departamento de Informática | es |
dc.affiliation.grupoinv | UC3M. Grupo de Investigación: COSEC (Computer SECurity Lab) | es |
dc.contributor.author | Pastrana, Sergio | |
dc.contributor.author | Orfila, Agustín | |
dc.contributor.author | Ribagorda Garnacho, Arturo | |
dc.date.accessioned | 2011-09-23T11:51:32Z | |
dc.date.available | 2011-09-23T11:51:32Z | |
dc.date.issued | 2011-01 | |
dc.description | Proceeding of: 44th Hawaii International Conference on System Science, Kauai, HI, January 4-7, 2011 | |
dc.description.abstract | Signature based Network Intrusion Detection Systems (NIDS) apply a set of rules to identify hostile traffic in network segments. Currently they are so effective detecting known attacks that hackers seek new techniques to go unnoticed. Some of these techniques consist of exploiting network protocols ambiguities. Nowadays NIDS are prepared against most of these evasive techniques, as they are recognized and sorted out. The emergence of new evasive forms may cause NIDS to fail. In this paper we present an innovative functional framework to evade NIDS. Primary, NIDS are modeled accurately by means of Genetic Programming (GP). Then, we show that looking for evasions on models is simpler than directly trying to understand the behavior of NIDS. We present a proof of concept showing how to evade a self-built NIDS regarding two publicly available datasets. Our framework can be used to audit NIDS. | |
dc.description.sponsorship | This work was partially supported by CDTI, Ministerio de Industria, Turismo y Comercio of Spain in collaboration with Telefonica I+D, Project SEGUR@ CENIT-2007 2004. | |
dc.description.status | Publicado | |
dc.format.mimetype | text/plain | |
dc.format.mimetype | application/pdf | |
dc.identifier.bibliographicCitation | 44th Hawaii International Conference on System Science. IEEE, 2011, pp. 1-10 | |
dc.identifier.doi | 10.1109/HICSS.2011.12 | |
dc.identifier.isbn | 978-1-4244-9618-1 | |
dc.identifier.issn | 1530-1605 | |
dc.identifier.publicationfirstpage | 1 | |
dc.identifier.publicationlastpage | 10 | |
dc.identifier.publicationtitle | 44th Hawaii International Conference on System Science | |
dc.identifier.uri | https://hdl.handle.net/10016/9987 | |
dc.language.iso | eng | |
dc.publisher | IEEE | |
dc.relation.eventdate | January 4-7, 2011 | |
dc.relation.eventnumber | 44 | |
dc.relation.eventplace | Kauai (Hawaii, USA) | |
dc.relation.eventtitle | 44th Hawaii International Conference on System Science | |
dc.relation.publisherversion | http://dx.doi.org/10.1109/HICSS.2011.12 | |
dc.rights | © IEEE | |
dc.rights.accessRights | open access | |
dc.subject.eciencia | Informática | |
dc.subject.other | Network Intrusion Detection Systems | |
dc.subject.other | IDS | |
dc.subject.other | Evasion | |
dc.title | A functional framework to evade network IDS | |
dc.type | conference paper | * |
dspace.entity.type | Publication |
Files
Original bundle
1 - 1 of 1
Loading...
- Name:
- functional_HICSS_2011_ps.pdf
- Size:
- 495.34 KB
- Format:
- Adobe Portable Document Format