NMON Network Monitoring: Books: NetHost-sensor: Monitoring a target host's application via system calls [An article from: Information Security Technical Report]

NMON Network Monitoring

Location: Home » Books » NetHost-sensor: Monitoring a target host's application via system calls [An article from: Information Security Technical Report]

August 7, 2008

Bestsellers

•	CISSP Certification All-in-One Exam Guide, 4th Ed. (All-in-One)
•	CCNA Official Exam Certification Library (CCNA Exam 640-802) (Exam Certification Guide)
•	Web 2.0: A Strategy Guide: Business thinking and strategies behind successful Web 2.0 implementations.
•	CCNA: Cisco Certified Network Associate Study Guide: Exam 640-802
•	Microsoft SharePoint 2007 For Dummies (For Dummies (Computer/Tech))
•	Microsoft Office SharePoint Server 2007 Best Practices
•	Mastering VMware Infrastructure 3 (Mastering)
•	Learning ActionScript 3.0: A Beginner's Guide
•	Microsoft SQL Server 2005 Reporting Services 2005
•	Network Warrior

Browse

•	Books
•	Computers
•	Electronics

New Releases

•	Microsoft Office SharePoint Server 2007 Best Practices
•	Mastering VMware Infrastructure 3 (Mastering)
•	The Best of 2600: A Hacker Odyssey
•	The iPhone Developer's Cookbook: Building Applications with the iPhone SDK (Developer's Library)
•	Microsoft Exchange Server 2007 with SP1: Tony Redmond's Guide to Successful Implementation
•	Professional SharePoint 2007 Web Content Management Development: Building Publishing Sites with Office SharePoint Server 2007 (Wrox Programmer to Programmer)
•	Deploying Rails Applications: A Step-by-Step Guide (Facets of Ruby)
•	MCITP Self-Paced Training Kit (Exams 70-640, 70-642, 70-646): Server Administrator Core Requirements (PRO-Certification) (PRO-Certification)
•	MCTS Self-Paced Training Kit (Exam 70-640): Configuring Windows Server 2008 Active Directory
•	CCNA Security Official Exam Certification Guide (Exam 640-553) (Exam Certification Guide)

NetHost-sensor: Monitoring a target host's application via system calls [An article from: Information Security Technical Report]
	Authors: A.a. Abimbola, J.m. Munoz, W.j. Buchanan Publisher: Elsevier Category: Book Buy New: $7.95 Format: Html Media: Digital ASIN: B000PC0RPG Publication Date: January 2006 Shipping: Eligible for Super Saver Shipping Availability: Available for download now

Editorial Reviews: Product Description This digital document is a journal article from Information Security Technical Report, published by Elsevier in 2006. The article is delivered in HTML format and is available in your Amazon.com Media Library immediately after purchase. You can view it with any web browser. Description: Intrusion detection has emerged as an important approach to network, host and application security. Network security includes analysing network packet payload and other inert network packet profiles for intrusive trends; whereas, host security may employ system logs for intrusion detection. In this paper, we contribute to the research community by tackling application security and attempt to detect intrusion via differentiating normal and abnormal application behaviour. A method for anomaly intrusion detection for applications is proposed based on deterministic system call traces derived from a monitored target application's dynamic link libraries (DLLs). We isolate associated DLLs of a monitored target application; log system call traces of the application in real time and use heuristic method to detect intrusion before the application is fully compromised. Our investigative research experiment methodology and set-up are reported, alongside our experimental procedure and results that show our research effort is effective and efficient, and can be used in practice to monitor a target application in real time.

For your safety and security, orders are processed through amazon.com