A Survey of the High-Speed Self-Learning Intrusion Detection Research Area

Anna Sperotto; R. van de Meent

doi:10.1007/978-3-540-72986-0_24

A Survey of the High-Speed Self-Learning Intrusion Detection Research Area

Anna Sperotto
, R. van de Meent

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

1 Citation (Scopus)

89 Downloads (Pure)

Abstract

Intrusion detection for IP networks has been a research theme for a number of years already. One of the challenges is to keep up with the ever increasing Internet usage and network link speeds, as more and more data has to be scanned for intrusions. Another challenge is that it is hardly feasible to adapt the scanning configuration to new threats manually in a timely fashion, because of the possible rapid spread of new threats. This paper is the result of the first three months of a PhD research project in high speed, self-learning network intrusion detection systems. Here, we give an overview of the state of the art in this field, highlighting at the same time the major open issues.

Original language	Undefined
Title of host publication	First International Conference on Autonomous Infrastructure, Management and Security
Editors	Arosha K. Bandara, Mark Burgess
Place of Publication	Heidelberg
Publisher	Springer
Pages	196-199
Number of pages	4
ISBN (Print)	978-3-540-72985-3
DOIs	https://doi.org/10.1007/978-3-540-72986-0_24 https://doi.org/10.1007/978-3-540-72986-0
Publication status	Published - Jun 2007
Event	1st International Conference on Autonomous Infrastructure, Management and Security, AIMS 2007 - Oslo, Norway Duration: 21 Jun 2007 → 22 Jun 2007 Conference number: 1

Publication series

Name	Lecture Notes in Computer Science
Publisher	Springer Verlag
Number	LNCS4549
Volume	4543

Conference

Conference	1st International Conference on Autonomous Infrastructure, Management and Security, AIMS 2007
Abbreviated title	AIMS 2007
Country/Territory	Norway
City	Oslo
Period	21/06/07 → 22/06/07

Keywords

Intrusion Detection
High speed Networks
IR-61871
METIS-241813
EWI-10822

Access to Document

aims2007_formatted

Cite this

Sperotto, A., & van de Meent, R. (2007). A Survey of the High-Speed Self-Learning Intrusion Detection Research Area. In A. K. Bandara, & M. Burgess (Eds.), First International Conference on Autonomous Infrastructure, Management and Security (pp. 196-199). (Lecture Notes in Computer Science; Vol. 4543, No. LNCS4549). Springer. https://doi.org/10.1007/978-3-540-72986-0_24, https://doi.org/10.1007/978-3-540-72986-0

@inproceedings{24c8f125c2aa4e1ea3041b2e16d26747,

title = "A Survey of the High-Speed Self-Learning Intrusion Detection Research Area",

abstract = "Intrusion detection for IP networks has been a research theme for a number of years already. One of the challenges is to keep up with the ever increasing Internet usage and network link speeds, as more and more data has to be scanned for intrusions. Another challenge is that it is hardly feasible to adapt the scanning configuration to new threats manually in a timely fashion, because of the possible rapid spread of new threats. This paper is the result of the first three months of a PhD research project in high speed, self-learning network intrusion detection systems. Here, we give an overview of the state of the art in this field, highlighting at the same time the major open issues.",

keywords = "Intrusion Detection, High speed Networks, IR-61871, METIS-241813, EWI-10822",

author = "Anna Sperotto and \{van de Meent\}, R.",

note = "10.1007/978-3-540-72986-0 ; 1st International Conference on Autonomous Infrastructure, Management and Security, AIMS 2007 ; Conference date: 21-06-2007 Through 22-06-2007",

year = "2007",

month = jun,

doi = "10.1007/978-3-540-72986-0\_24",

language = "Undefined",

isbn = "978-3-540-72985-3",

series = "Lecture Notes in Computer Science",

publisher = "Springer",

number = "LNCS4549",

pages = "196--199",

editor = "Bandara, \{Arosha K.\} and Mark Burgess",

booktitle = "First International Conference on Autonomous Infrastructure, Management and Security",

address = "Germany",

}

Sperotto, A & van de Meent, R 2007, A Survey of the High-Speed Self-Learning Intrusion Detection Research Area. in AK Bandara & M Burgess (eds), First International Conference on Autonomous Infrastructure, Management and Security. Lecture Notes in Computer Science, no. LNCS4549, vol. 4543, Springer, Heidelberg, pp. 196-199, 1st International Conference on Autonomous Infrastructure, Management and Security, AIMS 2007, Oslo, Norway, 21/06/07. https://doi.org/10.1007/978-3-540-72986-0_24, https://doi.org/10.1007/978-3-540-72986-0

A Survey of the High-Speed Self-Learning Intrusion Detection Research Area. / Sperotto, Anna; van de Meent, R.
First International Conference on Autonomous Infrastructure, Management and Security. ed. / Arosha K. Bandara; Mark Burgess. Heidelberg: Springer, 2007. p. 196-199 (Lecture Notes in Computer Science; Vol. 4543, No. LNCS4549).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

TY - GEN

T1 - A Survey of the High-Speed Self-Learning Intrusion Detection Research Area

AU - Sperotto, Anna

AU - van de Meent, R.

N1 - Conference code: 1

PY - 2007/6

Y1 - 2007/6

N2 - Intrusion detection for IP networks has been a research theme for a number of years already. One of the challenges is to keep up with the ever increasing Internet usage and network link speeds, as more and more data has to be scanned for intrusions. Another challenge is that it is hardly feasible to adapt the scanning configuration to new threats manually in a timely fashion, because of the possible rapid spread of new threats. This paper is the result of the first three months of a PhD research project in high speed, self-learning network intrusion detection systems. Here, we give an overview of the state of the art in this field, highlighting at the same time the major open issues.

AB - Intrusion detection for IP networks has been a research theme for a number of years already. One of the challenges is to keep up with the ever increasing Internet usage and network link speeds, as more and more data has to be scanned for intrusions. Another challenge is that it is hardly feasible to adapt the scanning configuration to new threats manually in a timely fashion, because of the possible rapid spread of new threats. This paper is the result of the first three months of a PhD research project in high speed, self-learning network intrusion detection systems. Here, we give an overview of the state of the art in this field, highlighting at the same time the major open issues.

KW - Intrusion Detection

KW - High speed Networks

KW - IR-61871

KW - METIS-241813

KW - EWI-10822

U2 - 10.1007/978-3-540-72986-0_24

DO - 10.1007/978-3-540-72986-0_24

M3 - Conference contribution

SN - 978-3-540-72985-3

T3 - Lecture Notes in Computer Science

SP - 196

EP - 199

BT - First International Conference on Autonomous Infrastructure, Management and Security

A2 - Bandara, Arosha K.

A2 - Burgess, Mark

PB - Springer

CY - Heidelberg

T2 - 1st International Conference on Autonomous Infrastructure, Management and Security, AIMS 2007

Y2 - 21 June 2007 through 22 June 2007

ER -

Sperotto A, van de Meent R. A Survey of the High-Speed Self-Learning Intrusion Detection Research Area. In Bandara AK, Burgess M, editors, First International Conference on Autonomous Infrastructure, Management and Security. Heidelberg: Springer. 2007. p. 196-199. (Lecture Notes in Computer Science; LNCS4549). doi: 10.1007/978-3-540-72986-0_24, 10.1007/978-3-540-72986-0