TY - GEN
T1 - Mechanisms for attack protection on a prevention framework
AU - García, Joaquín
AU - Castillo, Sergio
AU - Navarro, Guillermo
AU - Borrell, Joan
PY - 2005/1/1
Y1 - 2005/1/1
N2 - Current research in Intrusion Detection Systems (IDSs), targeted towards preventing computer attacks, is mainly focused on improving detection and reaction mechanisms, without preserving the protection of the system itself. This way, if an attacker compromises the security of the detection system, she may be able to disarm the detection or reaction mechanisms, as well as delete log entries that may reveal her actions. Given this scenario, we introduce in this paper the use of an access control mechanism, embedded into the operating system's kernel, to handle the protection of the system itself once it has been compromised by an attacker.
AB - Current research in Intrusion Detection Systems (IDSs), targeted towards preventing computer attacks, is mainly focused on improving detection and reaction mechanisms, without preserving the protection of the system itself. This way, if an attacker compromises the security of the detection system, she may be able to disarm the detection or reaction mechanisms, as well as delete log entries that may reveal her actions. Given this scenario, we introduce in this paper the use of an access control mechanism, embedded into the operating system's kernel, to handle the protection of the system itself once it has been compromised by an attacker.
U2 - 10.1109/ccst.2005.1594872
DO - 10.1109/ccst.2005.1594872
M3 - Conference contribution
AN - SCOPUS:42749100728
SN - 0780392450
SN - 9780780392458
T3 - Proceedings - International Carnahan Conference on Security Technology
BT - 39th Annual 2005 International Carnahan Conference on Security Technology, CCST'05
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 39th Annual 2005 International Carnahan Conference on Security Technology, CCST'05
Y2 - 11 October 2005 through 14 October 2005
ER -