[go: up one dir, main page]
More Web Proxy on the site http://driver.im/
Skip to main content

Advertisement

Springer Nature Link
Log in
Menu
Find a journal Publish with us Track your research
Search
Cart
  1. Home
  2. Computer Aided Verification
  3. Conference paper

The Orchids Intrusion Detection Tool

  • Conference paper
  • pp 286–290
  • Cite this conference paper
Computer Aided Verification (CAV 2005)
The Orchids Intrusion Detection Tool
  • Julien Olivain18 &
  • Jean Goubault-Larrecq18 

Part of the book series: Lecture Notes in Computer Science ((LNTCS,volume 3576))

Included in the following conference series:

  • International Conference on Computer Aided Verification

  • 2051 Accesses

  • 19 Citations

Abstract

Orchids is an intrusion detection tool based on techniques for fast, on-line model-checking. Temporal formulae are taken from a temporal logic tailored to the description of intrusion signatures. They are checked against merged network and system event flows, which together form a linear Kripke structure.

Partially supported by the RNTL Project DICO, the ACI jeunes chercheurs “Sécurité informatique, protocoles crypto. et détection d’intrusions” and the ACI cryptologie “Psi-Robuste”.

Download to read the full chapter text

Chapter PDF

Similar content being viewed by others

Intrusion Detection Systems: A State-of-the-Art Taxonomy and Survey

Article 17 November 2022

On the complexity of monitoring Orchids signatures, and recurrence equations

Article 28 October 2017

Intrusion Detection Systems (IDS)—An Overview with a Generalized Framework

Chapter © 2020

References

  1. Goubault-Larrecq, J.: Un algorithme pour l’analyse de logs. Research Report LSV-02-18, Lab. Specification and Verification, ENS de Cachan, Cachan, France, 33 pages (November 2002)

    Google Scholar 

  2. Goubault-Larrecq, J., Pouzol, J.-P., Demri, S., Mé, L., Carle, P.: Langages de détection d’attaques par signatures. Sous-projet 3, livrable 1 du projet RNTL DICO. Version 1, 30 pages (June 2002)

    Google Scholar 

  3. Morton, A., Starzetz, P.: Linux kernel do_brk function boundary condition vulnerability. References CAN-2003-0961 (CVE), BugTraq Id 9138 (December 2003), http://www.securityfocus.com/bid/9138

  4. Olivain, J.: ORCHIDS—real-time event analysis and temporal correlation for intrusion detection in information systems (2004), http://www.lsv.ens-cachan.fr/orchids/

  5. Purczyński, W.: Linux kernel privileged process hijacking vulnerability. BugTraq Id 7112 (March 2003), http://www.securityfocus.com/bid/7112

  6. Roger, M., Goubault-Larrecq, J.: Log auditing through model checking. In: Proc. 14th IEEE Computer Security Foundations Workshop (CSFW 2001), Cape Breton, Nova Scotia, Canada, pp. 220–236. IEEE Comp. Soc. Press, Los Alamitos (2001)

    Chapter  Google Scholar 

  7. Wolper, P.: Temporal logic can be more expressive. Information and Control 56(1/2), 72–99 (1983)

    Article  MATH  MathSciNet  Google Scholar 

Download references

Author information

Authors and Affiliations

  1. LSV/CNRS UMR 8643 & INRIA Futurs projet SECSI & ENS Cachan, 61 avenue du président-Wilson, F-94235 Cedex, Cachan

    Julien Olivain & Jean Goubault-Larrecq

Authors
  1. Julien Olivain
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Jean Goubault-Larrecq
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. LFCS, School of Informatics, University of Edinburgh,  

    Kousha Etessami

  2. Microsoft Research India,  

    Sriram K. Rajamani

Rights and permissions

Reprints and permissions

Copyright information

© 2005 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Olivain, J., Goubault-Larrecq, J. (2005). The Orchids Intrusion Detection Tool. In: Etessami, K., Rajamani, S.K. (eds) Computer Aided Verification. CAV 2005. Lecture Notes in Computer Science, vol 3576. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11513988_28

Download citation

  • .RIS
  • .ENW
  • .BIB

  • DOI: https://doi.org/10.1007/11513988_28

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-27231-1

  • Online ISBN: 978-3-540-31686-2

  • eBook Packages: Computer ScienceComputer Science (R0)

Share this paper

Anyone you share the following link with will be able to read this content:

Sorry, a shareable link is not currently available for this article.

Provided by the Springer Nature SharedIt content-sharing initiative

Publish with us

Policies and ethics

Search

Navigation

  • Find a journal
  • Publish with us
  • Track your research

Discover content

  • Journals A-Z
  • Books A-Z

Publish with us

  • Journal finder
  • Publish your research
  • Open access publishing

Products and services

  • Our products
  • Librarians
  • Societies
  • Partners and advertisers

Our imprints

  • Springer
  • Nature Portfolio
  • BMC
  • Palgrave Macmillan
  • Apress
  • Your US state privacy rights
  • Accessibility statement
  • Terms and conditions
  • Privacy policy
  • Help and support
  • Cancel contracts here

79.170.44.78

Not affiliated

Springer Nature

© 2024 Springer Nature