Privacy-respecting Intrusion Detection

by Flegel, Ulrich

ISBN13:
9780387343464
ISBN10:
0387343466
Format: Hardcover
Copyright: 2007-10-15
Publisher: Springer-Verlag New York Inc
More Book Details
Purchase Benefits

Free Shipping On Orders Over $35!

Your order must be $35 or more to qualify for free economy shipping. Bulk sales, PO's, Marketplace items, eBooks and apparel do not qualify for this offer.
Get Rewarded for Ordering Your Textbooks! Enroll Now
Customer Reviews Read Reviews
Write a Review
Privacy-respecting Intrusion Detection > ISBN13: 9780387343464

List Price: ~~$179.99~~ Save up to $144.35

Digital

$77.22*

More Prices

Digital
$77.22*

Add to Cart

DURATION

PRICE

Online: 30 Days

Downloadable: 30 Days - VitalSource

$35.64*

Online: 60 Days

Downloadable: 60 Days - VitalSource

$47.52*

Online: 90 Days

Downloadable: 90 Days - VitalSource

$59.40*

Online: 120 Days

Downloadable: 120 Days - VitalSource

$71.28*

Online: 180 Days

Downloadable: 180 Days - VitalSource

$77.22*

Online: 1825 Days

Downloadable: Lifetime Access - VitalSource

$118.80*

*To support the delivery of the digital material to you, a digital delivery fee of $3.99 will be charged on each digital item.

Marketplace

$38.87

More Prices

Summary

With our society's growing dependency on information technology systems (IT), the issue of IT Security becomes increasingly important. IT security cannot be achieved by means of preventive safeguards alone. To properly respond to misuse or abusive activity in IT systems, one needs to establish the capability to detect and understand improper activity. Intrusion Detection Systems (IDSs) observe activity occurring in the IT system, record these observations in audit data, and analyze the collected audit data in order to detect misuse. The collection and processing of audit data for misuse detection conflicts with the expectation and the rights of the system users regarding their privacy. A viable solution is replacing personal data with pseudonyms in audit data. Privacy-Respecting Intrusion Detection introduces the concept of technical purpose binding, which restricts the linkability of pseudonyms in audit data, to the amount necessary for misuse detection. Also, it limits the recovery of the original personal data to pseudonyms involved in a detected misuse scenario. This book includes case studies demonstrating this theory and solutions that are constructively validated by providing algorithms. Privacy-Respecting Intrusion Detection is designed for a professional audience, composed of practitioners and researchers in industry. This book is also suitable as an advance-level text in the computer science field. Foreword by Richard Kemmerer, University of California, Santa Barbara, USA.

Introduction and Background
Introduction	p. 3
Authorizations	p. 9
An Architectural Model for Secure Authorizations	p. 13
Traditional Security Objectives	p. 27
Personal Data Protection Objectives	p. 31
Technical Enforcement of Multilateral Security	p. 43
Pseudonyms - A Technical Point of View	p. 47
An Architectural Model for Pseudonymous Authorizations	p. 55
Comparing Architectures	p. 65
Audit Data Pseudonymization	p. 77
Set-based Approach
Requirements, Assumptions and Trust Model	p. 91
Modeling Conditions for Technical Purpose Binding	p. 97
Cryptographic Enforcement of Disclosure Conditions	p. 103
The Mismatch Problem	p. 109
Operational Pseudonymization and Pseudonym Disclosure	p. 115
Extensions	p. 123
Application to Unix Audit Data
Unix Audit Data	p. 137
Syslog	p. 141
Instantiating the Set-based Approach for Syslog Audit Data	p. 147
Implementation: Pseudo/CoRe	p. 159
Evaluation
APES: Anonymity and Privacy in Electronic Services	p. 171
Evaluating the Design Using Basic Building Blocks	p. 177
Evaluating the Performance of the Implementation	p. 187
Refinement of Misuse Scenario Models
Motivating Model Refinements	p. 199
Models of Misuse Scenarios	p. 203
Pseudonymization Based on Serial Signature-Nets	p. 229
Pseudonym Linkability	p. 233
Pseudonym Disclosure	p. 247
Summary	p. 283
Threshold Schemes for Cryptographic Secret Sharing	p. 285
References	p. 287
Index	p. 303
Table of Contents provided by Ingram. All Rights Reserved.

Supplemental Materials

What is included with this book?

The New copy of this book will include any supplemental materials advertised. Please check the title of the book to determine if it should include any access cards, study guides, lab manuals, CDs, etc.

The Used, Rental and eBook copies of this book are not guaranteed to include any supplemental materials. Typically, only the book itself is included. This is true even if the title states it includes any access cards, study guides, lab manuals, CDs, etc.