EEMCS EPrints Service

Education

Research

Prospective Students

Jobs

Publications

Intranet (internal)

Nederlands

Contact

Sitemap

Organisation

1326 Poseidon: a 2-tier Anomaly-based Network Intrusion Detection System

Home Policy Brochure Browse Search User Area Contact Help

Bolzoni, D. and Zambon, Emmanuele and Etalle, S. and Hartel, P.H. (2006) Poseidon: a 2-tier Anomaly-based Network Intrusion Detection System. In: 4th IEEE Int. Information Assurance Workshop (IWIA2006), 13-14 Apr 2006, London, UK. pp. 144-156. IEEE Computer Society. ISBN 0 7695 2564 4

Full text available as:

PDF

- Requires a PDF viewer such as GSview, Xpdf or Adobe Acrobat Reader
360 Kb

Official URL: http://dx.doi.org/10.1109/IWIA.2006.18

Abstract

We present Poseidon, a new anomaly based intrusion detection system. Poseidon is payload-based, and presents a two-tier architecture: the first stage consists of a Self-Organizing Map, while the second one is a modified PAYL system. Our benchmarks on the 1999 DARPA data set show a higher detection rate and lower number of false positives than PAYL and PHAD.

Item Type:	Conference or Workshop Paper (Full Paper, Talk)
Research Group:	EWI-DIES: Distributed and Embedded Security, EWI-IS: Information Systems
Research Program:	CTIT-ISTRICE: Integrated Security and Privacy in a Networked World
Research Project:	IPID: Integrated Policy-based Intrusion Detection
ID Code:	1326
Status:	Published
Deposited On:	28 April 2006
Refereed:	Yes
International:	Yes
More Information:	statistics metis

Export this item as:

To correct this item please ask your editor

Repository Staff Only: edit this item