Privacy-Respecting Intrusion Detection

With our society's growing dependency on information technology systems (IT), IT security is crucial. To properly respond to misuse or abusive activity in IT systems, one needs to establish the capability to detect and understand improper activity. Intrusion Detection Systems observe activity o...

Πλήρης περιγραφή

Λεπτομέρειες βιβλιογραφικής εγγραφής
Κύριος συγγραφέας: Flegel, Ulrich (Συγγραφέας)
Συγγραφή απο Οργανισμό/Αρχή: SpringerLink (Online service)
Μορφή: Ηλεκτρονική πηγή Ηλ. βιβλίο
Γλώσσα:English
Έκδοση: Boston, MA : Springer US, 2007.
Σειρά:Advances in Information Security, 35
Θέματα:
Διαθέσιμο Online:Full Text via HEAL-Link
LEADER 04493nam a22005535i 4500
001 978-0-387-68254-9
003 DE-He213
005 20151204171916.0
007 cr nn 008mamaa
008 100301s2007 xxu| s |||| 0|eng d
020 |a 9780387682549  |9 978-0-387-68254-9 
024 7 |a 10.1007/978-0-387-68254-9  |2 doi 
040 |d GrThAP 
050 4 |a QA76.9.A25 
072 7 |a UR  |2 bicssc 
072 7 |a UTN  |2 bicssc 
072 7 |a COM053000  |2 bisacsh 
082 0 4 |a 005.8  |2 23 
100 1 |a Flegel, Ulrich.  |e author. 
245 1 0 |a Privacy-Respecting Intrusion Detection  |h [electronic resource] /  |c by Ulrich Flegel. 
264 1 |a Boston, MA :  |b Springer US,  |c 2007. 
300 |a XX, 307 p. 61 illus.  |b online resource. 
336 |a text  |b txt  |2 rdacontent 
337 |a computer  |b c  |2 rdamedia 
338 |a online resource  |b cr  |2 rdacarrier 
347 |a text file  |b PDF  |2 rda 
490 1 |a Advances in Information Security,  |x 1568-2633 ;  |v 35 
505 0 |a and Background -- Authorizations -- An Architectural Model for Secure Authorizations -- Traditional Security Objectives -- Personal Data Protection Objectives -- The Challenge: Technical Enforcement of Multilateral Security -- Pseudonyms – A Technical Point of View -- An Architectural Model for Pseudonymous and Secure Authorizations -- Comparing Architectures -- Audit Data Pseudonymization -- Set-based Approach -- Requirements, Assumptions and Trust Model -- Modeling Conditions for Technical Purpose Binding of Controlled Pseudonym Disclosure -- Cryptographic Enforcement of Disclosure Conditions -- The Mismatch Problem -- Operational Pseudonymization and Pseudonym Disclosure -- Extensions -- Application to Unix Audit Data -- Unix Audit Data -- Syslog -- Instantiating the Set-based Approach for Syslog-style Audit Data -- Implementation: Pseudo/CoRe -- Evaluation -- APES: Anonymity and Privacy in Electronic Services -- Evaluating the Design Using Basic Building Blocks for Anonymity -- Evaluating the Performance of the Implementation -- Refinement of Misuse Scenario Models -- Motivating Model Refinements -- Models of Misuse Scenarios -- Pseudonymization Based on Serial Signature-Nets -- Pseudonym Linkability -- Pseudonym Disclosure. 
520 |a With our society's growing dependency on information technology systems (IT), IT security is crucial. To properly respond to misuse or abusive activity in IT systems, one needs to establish the capability to detect and understand improper activity. Intrusion Detection Systems observe activity occurring in the IT system, record these observations in audit data, and analyze collected audit data to detect misuse. Collecting and processing audit data for misuse detection conflicts with expectations and rights of system users regarding their privacy. A viable solution is replacing personal data with pseudonyms in audit data. Privacy-Respecting Intrusion Detection introduces technical purpose binding, restricting the linkability of pseudonyms in audit data, to the amount required for misuse detection. Also, it limits the recovery of original personal data to pseudonyms involved in a detected misuse scenario. This book includes case studies with constructively validated solutions by providing algorithms. Privacy-Respecting Intrusion Detection is designed for a professional audience, composed of practitioners and researchers in industry. This book is also suitable as an advance-level text in the computer science field. Foreword by Richard Kemmerer, University of California, Santa Barbara, USA . 
650 0 |a Computer science. 
650 0 |a Computer organization. 
650 0 |a Computer communication systems. 
650 0 |a Computer security. 
650 0 |a Data structures (Computer science). 
650 0 |a Data encryption (Computer science). 
650 1 4 |a Computer Science. 
650 2 4 |a Systems and Data Security. 
650 2 4 |a Computer Communication Networks. 
650 2 4 |a Data Encryption. 
650 2 4 |a Information Systems Applications (incl. Internet). 
650 2 4 |a Data Structures, Cryptology and Information Theory. 
650 2 4 |a Computer Systems Organization and Communication Networks. 
710 2 |a SpringerLink (Online service) 
773 0 |t Springer eBooks 
776 0 8 |i Printed edition:  |z 9780387343464 
830 0 |a Advances in Information Security,  |x 1568-2633 ;  |v 35 
856 4 0 |u http://dx.doi.org/10.1007/978-0-387-68254-9  |z Full Text via HEAL-Link 
912 |a ZDB-2-SCS 
950 |a Computer Science (Springer-11645)