Skip to main content
SpringerLink
Log in
SpringerLink
Log in

A Hybrid Intrusion Detection Strategy Used for Web Security

  • Conference paper
  • First Online:
Rough Sets, Fuzzy Sets, Data Mining, and Granular Computing (RSFDGrC 2003)

Part of the book series: Lecture Notes in Computer Science ((LNAI,volume 2639))

  • 711 Accesses

Abstract

This paper describes a novel framework for intrusion detection systems used for Web security. A hierarchical structure was proposed to gain both server-based detection and network-based detection. The system consists of three major components. First, there is a host detection module (HDM) in each web server and a collection of detection units (UC) running on background in the host. Second, each subnet has a network detection module (NDM), which operates just like a HDM except that it analyzes network traffic. Finally, there is a central control detection module (CCDM), which is served as a high level administrative center. The CCDM receives reports from various HDM and NDM modules, and by processing and correlating these reports to detect intrusions. Detection rules are inductively learned from audit records and distributed to each detection modules in the CCDM.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 84.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 109.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Denning D E. An intrusion-detection model, IEEE Computer Society Symposium on Research in Security and Privacy, Oakland, USA, (1987) 118–131

    Google Scholar 

  2. Smaha S E, Haystack:An intrusion detection system, Proc. of the IEEE Fourth Aerospace Computer Security Application Conference. Orlando, FL: IEEE, (1988)37–44

    Chapter  Google Scholar 

  3. Christina Warrender, Stephanie Forrest, and Barak Pearlmutter. Detecting intrusions using system calls: alternative data models, Proc.of the 1999 IEEE Symposium on Security and Privacy, IEEE, (1999)1033–145

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. School of Information Science and Engineering, Jinan University, Jinan, 250022, P.R.China

    Bo Yang, Han Li & Yi Li

  2. Department of Information Industry, Shandong Provincial Govement, Jinan, 250011, P.R.China

    Shaojun Yang

Authors
  1. Bo Yang
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Han Li
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Yi Li
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Shaojun Yang
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Institute of Computer Science and Technology, Chongqing University of Posts and Telecommunications, Chongqing, 400065, P.R. China

    Guoyin Wang

  2. Department of Computer Science, Nanchang University, Nanchang, 330029, P.R. China

    Qing Liu

  3. Department of Computer Science, University of Regina, Regina, Saskatchewan, S4S 0A2, Canada

    Yiyu Yao

  4. Institute of Mathematics, Warsaw University, Banacha 2, 02-097, Warsaw, Poland

    Andrzej Skowron

Rights and permissions

Reprints and permissions

Copyright information

© 2003 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Yang, B., Li, H., Li, Y., Yang, S. (2003). A Hybrid Intrusion Detection Strategy Used for Web Security. In: Wang, G., Liu, Q., Yao, Y., Skowron, A. (eds) Rough Sets, Fuzzy Sets, Data Mining, and Granular Computing. RSFDGrC 2003. Lecture Notes in Computer Science(), vol 2639. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-39205-X_126

Download citation

  • DOI: https://doi.org/10.1007/3-540-39205-X_126

  • Published:

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-14040-5

  • Online ISBN: 978-3-540-39205-7

  • eBook Packages: Springer Book Archive

Publish with us

Policies and ethics

Search

Navigation