Intrusion Detection as Passive Testing: Linguistic Support with TTCN-3 (Extended Abstract)

@inproceedings{Brzezinski2007IntrusionDA,
  title={Intrusion Detection as Passive Testing: Linguistic Support with TTCN-3 (Extended Abstract)},
  author={Krzysztof M. Brzezinski},
  booktitle={DIMVA},
  year={2007}
}
We explore the idea of using the internationally standardized test language TTCN-3 (Testing and Test Control Notation) as a platform for Intrusion Detection (ID) systems. Intrusion detection is treated as an application of verification by passive testing. It is argued that TTCN contains many features embodied in various „detection languages”, and is relevant for ID. As a case study, we discuss a TTCN-based IDS for detecting the Smurf attack. 

From This Paper

Figures, tables, and topics from this paper.

Citations

Publications citing this paper.

Similar Papers

Loading similar papers…