Introduction to IDS - David R. Kuykendall

David R. Kuykendall (kirk@mudd.csap.af.mil)
Fri, 6 Jan 1995 17:29:23 -0600

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: ziese@trex3.csap.af.mil: "Introduction"
Previous message: adamsb@un.org: "RE: INTRUDERS ARE HERE"

As requested, here is my introduction:

My name is David R. Kuykendall.  I am the Team Lead for the CMET Developers
at Trident Data Systems.  Our work is to support The Air Force Information
Warfare Center (AFIWC) and the Counter Measures Engineering Team (CMET).

One of the better known products that we developed is the current version 
of the Distributed Intrusion Detection System (DIDS).  But our job is to
cover any software tools needed to fulfill the AFIWC CMET mission. 

DIDS is software designed to be a real-time, network knowledgeable, intrusion 
detection package.  DIDS looks at, and correlates the connections on multiple 
machines to the initial login or NID (Network ID).  This allows the actions
of one person hopping among machines and multiple name changes to be associated
to his initial connection into the monitored network.  As the information is 
generated, an expert system evaluates the information and determines if some
action is required.

We would also like to get involved in the establishment of an Intrusion 
Scenario archive/repository.  We are currently working on providing a machine
for this purpose.

================================================================

"Perhaps the most dreadful way for managers to measure progress 
     is to measure the lines of code produced." Booch p.279

David R. Kuykendall              Voice:  210-377-0477
Trident Data Systems             Fax:    210-377-0199
1100 N.W. Loop 410, STE 600      Email:  kirk@mudd.csap.af.mil
San Antonio, Texas 78213

Next message: ziese@trex3.csap.af.mil: "Introduction"
Previous message: adamsb@un.org: "RE: INTRUDERS ARE HERE"