- Lucas Vespa, Ritam Chakrovort, and Ning Weng, Lightweight Testbed for Evaluating Worm Containing Systems, International Journal of Security and Networks (IJSN), vol. 7, no. 1, pages 6-16, August 2012.
- Ning Weng, Lucas Vespa, and Benfano Soewito, Deep Packet Pre-filtering and Finite State Encoding for Adaptive Intrusion Detection System, Computer Networks vol. 55, no. 8, pages 1648-1661, June 2012.
- Abstract: An intrusion detection system (IDS) is a promising technique for detecting and thwarting attacks on computer systems and networks. In the context of ever-changing threats, new attacks are constantly created, and new rules for identifying them are dramatically increasing. To adapt to these new rules, IDSs must be easily reconfigurable, they must keep up with line rates of network traffic, and they must have high detection accuracy. In this paper, we propose a high-performance memory-based IDS that can be easily reconfigured for new rules. Our IDS achieves high performance and memory efficiency by utilizing deep packet pre-filtering and novel finite state encoding. We present simulation and experimental results that show the novelty and feasibility of our system.
- R. Loui and T. Loui. How to survive a cyber Pearl Harbor, IEEE Computer, accepted, to appear, 2015.