Enhancing Network Defense
Supplementing firewall and intrusion detection systems through intelligent anomaly detection
Veröffentlicht am: 09.08.2007, 12:30 Uhr
Präsentation vom: 09.08.2007, 12:30 Uhr
Teilnehmer: Luke Gotszling
Abstract: This event will showcase a novel method for hostile traffic detection. Current methods are either insecure against new threats and too slow or ineffective. Stateless systems are insecure due to data being split across packets and a reconstructed scan is too slow to analyze networks with large throughput. Unlike current signature or rule based systems, this method is unique in that it analyzes and learns from prior events to provide suggestions for future attempts that may not match a rule. The event will culminate with the details of tools prototyped in Perl for enhancing network security.
Speakers: Luke Gotszling
Room: Shelter Bar