Re: Intro (was: Re: IDS: please try give appropriate subject names)

Michael G. Reed (reed@itd.nrl.navy.mil)
Fri, 19 Mar 1999 20:49:53 -0500 (EST)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Jerry Dixon Jr: "IDS: Network Intrusion Detection"
Previous message: Steve Manzuik: "Re: Intro (was: Re: IDS: please try give appropriate subject"
In reply to: Paul Stevens: "Intro (was: Re: IDS: please try give appropriate subject names)"
Next in thread: Paul Stevens: "Re: Intro (was: Re: IDS: please try give appropriate subject names)"

FAQ: See http://www.ticm.com/kb/faq/idsfaq.html
IDS: See http://www-rnks.informatik.tu-cottbus.de/~sobirey/ids.html
HELP: Having problems.. Then email questions to ids-owner@uow.edu.au
NOTE: You MUST remove this line from reply messages as it will be filtered.
SPAM: DO NOT send unsolicted mail to this list.
USUB: email "unsubscribe ids" to majordomo@uow.edu.au
---------------------------------------------------------------------------

-----BEGIN PGP SIGNED MESSAGE-----

On 19 Mar 1999, Paul Stevens wrote:
|>This is the first message I've seen in my first week of subscription. 
|>Is this list dead ?
|>
|>Just in case that's not the case;

It's been pretty dead for a while.  Don't know quite why since IDS is
certainly not a dead topic.

|>My name is Paul Stevens. I work as a debian/linux operator. One of my
|>current projects is to research traffic analysis and intrusion
|>detection on this platform. 

I suggest you look at the following for traffic-analysis systems:

Onion Routing (http://www.onion-router.net/ -- okay, so this is a
shameless plug for my research :-).  This system is free and the code
is about to be release Open-Source.  We support Linux as one of our
primary development platforms.

Also worth looking at is the Pipe-Net model (not a real system, and
never likely to be built, but it is a great design for ultra low
bandwidth situations.

Along the same lines, although not yet available, is Freedom by
Zero-Knowledge Systems, Inc. (http://www.zks.net/).  They have a white
paper that (partially) describes their system available on their
website.  This is a commercial system, with the code held proprietary.
I have no comments on their system at this time.

There are other systems for just store-and-forward (ie email)
applications, and still others for digital telephony (ISDN).  See the
Onion Routing site for publications and pointers to the other
research.

- -Michael
 Research Scientist
 Computer Security Section (code 5542)
 Center for High Assurance Computer Systems
 Naval Research Laboratory

-----BEGIN PGP SIGNATURE-----
Version: 2.6.2

iQCVAwUBNvL+yU8Qx019l0ClAQH5iwP+KjILqyTD320F55AHsHLffZX9Po9/pMMF
eyrQ1L8TyqE0HKZ6hkn4yDtIJZPYRLXjj0D9CaUMQ8RdJ/n0N8s1nLT4/KAhFZ99
nuHnBYQJpLYHcuHbYm8ze0RFrNkQ2D2LsO6ZdyA5sux9WVOEd87RBPrn2EJdX1pG
XwLgdb17Gb0=
=9BAW
-----END PGP SIGNATURE-----

Next message: Jerry Dixon Jr: "IDS: Network Intrusion Detection"
Previous message: Steve Manzuik: "Re: Intro (was: Re: IDS: please try give appropriate subject"
In reply to: Paul Stevens: "Intro (was: Re: IDS: please try give appropriate subject names)"
Next in thread: Paul Stevens: "Re: Intro (was: Re: IDS: please try give appropriate subject names)"