| EPSRC Reference: |
GR/N02597/01 |
| Title: |
A GENERIC ARCHITECTURE FOR INTRUSION SPECIFICATION AND MISUSE DETECTION IN IT SYSTEMS |
| Principal Investigator: |
Furnell, Professor SM |
| Other Investigators: |
|
| Researcher Co-Investigators: |
|
| Project Partners: |
|
| Department: |
Communication & Electronic Eng |
| Organisation: |
University of Plymouth |
| Scheme: |
Standard Research (Pre-FEC) |
| Starts: |
01 September 2000 |
Ends: |
31 May 2004 |
Value (£): |
50,367
|
| EPSRC Research Topic Classifications: |
| Human-Computer Interactions |
Networks & Distributed Systems |
| Software Engineering |
|
|
| EPSRC Industrial Sector Classifications: |
| Communications |
Financial Services |
| Retail |
Information Technologies |
| No relevance to Underpinning Sectors |
|
|
| Related Grants: |
|
| Panel History: |
|
|
Summary on Grant Application Form |
|
The ever-increasing use of, and dependence upon, IT in the information society means that security is a major issue, which is likely to grow in importance in years to come. The research is concerned with intrusion specification and detection in IT and networked systems, which represent important areas of security given the continual increase in reported incidents of computer crime and abuse. Specifically, the research will advance the state of the art in intrusion detection systems by providing mechanisms to, firstly, enable the specification of intrusion scenarios in a system-independent manner and, secondly, facilitate real-time identification and prevention of unauthorised activities by legitimate users. The work will undertake analysis and characterisation of known intrusion scenarios, leading to the formal definition of a generic Intrusion Specification Language (ISL) which will then be mapped onto practical systems. The research will also identify strategies for misuse detection , resulting in the implementation and evaluation of a prototype system. The ISL and misuse detection architecture represent research areas that have yet to be addressed and as such, the outcome of this project will represent a fundamental contribution to the intrusion detection domain.
|
|
Key Findings |
|
This information can now be found on Gateway to Research (GtR) http://gtr.rcuk.ac.uk
|
|
Potential use in non-academic contexts |
|
This information can now be found on Gateway to Research (GtR) http://gtr.rcuk.ac.uk
|
|
Impacts |
|
| Description |
This information can now be found on Gateway to Research (GtR) http://gtr.rcuk.ac.uk |
| Summary |
|
| Date Materialised |
|
|
|
|
Sectors submitted by the Researcher |
|
This information can now be found on Gateway to Research (GtR) http://gtr.rcuk.ac.uk
|
| Project URL: |
|
| Further Information: |
|
| Organisation Website: |
http://www.plym.ac.uk |