Privacy-Respecting Intrusion Detection

With our society's growing dependency on information technology systems (IT), IT security is crucial. To properly respond to misuse or abusive activity in IT systems, one needs to establish the capability to detect and understand improper activity. Intrusion Detection Systems observe activity o...

Descripción completa

Detalles Bibliográficos
Clasificación:Libro Electrónico
Autor principal: Flegel, Ulrich (Autor)
Autor Corporativo: SpringerLink (Online service)
Formato: Electrónico eBook
Idioma:Inglés
Publicado: New York, NY : Springer US : Imprint: Springer, 2007.
Edición:1st ed. 2007.
Colección:Advances in Information Security, 35
Temas:
Data protection.
Computer networks .
Cryptography.
Data encryption (Computer science).
Application software.
Data structures (Computer science).
Information theory.
Computer engineering.
Data and Information Security.
Computer Communication Networks.
Cryptology.
Computer and Information Systems Applications.
Data Structures and Information Theory.
Computer Engineering and Networks.
Acceso en línea:Texto Completo
Tabla de Contenidos:
  • and Background
  • Authorizations
  • An Architectural Model for Secure Authorizations
  • Traditional Security Objectives
  • Personal Data Protection Objectives
  • The Challenge: Technical Enforcement of Multilateral Security
  • Pseudonyms - A Technical Point of View
  • An Architectural Model for Pseudonymous and Secure Authorizations
  • Comparing Architectures
  • Audit Data Pseudonymization
  • Set-based Approach
  • Requirements, Assumptions and Trust Model
  • Modeling Conditions for Technical Purpose Binding of Controlled Pseudonym Disclosure
  • Cryptographic Enforcement of Disclosure Conditions
  • The Mismatch Problem
  • Operational Pseudonymization and Pseudonym Disclosure
  • Extensions
  • Application to Unix Audit Data
  • Unix Audit Data
  • Syslog
  • Instantiating the Set-based Approach for Syslog-style Audit Data
  • Implementation: Pseudo/CoRe
  • Evaluation
  • APES: Anonymity and Privacy in Electronic Services
  • Evaluating the Design Using Basic Building Blocks for Anonymity
  • Evaluating the Performance of the Implementation
  • Refinement of Misuse Scenario Models
  • Motivating Model Refinements
  • Models of Misuse Scenarios
  • Pseudonymization Based on Serial Signature-Nets
  • Pseudonym Linkability
  • Pseudonym Disclosure.

Ejemplares similares