Skip to main content
SpringerLink
Log in
Book cover

Detection of Intrusions and Malware, and Vulnerability Assessment

Second International Conference, DIMVA 2005, Vienna, Austria, July 7-8, 2005, Proceedings

  • Conference proceedings
  • © 2005

Overview

Editors:
  1. Klaus Julisch

    1. IBM Research GmbH, Rüschlikon, Switzerland

    View editor publications

    You can also search for this editor in PubMed   Google Scholar

  2. Christopher Kruegel

    1. Secure Systems Lab, Technical University of Vienna, Vienna, Austria

    View editor publications

    You can also search for this editor in PubMed   Google Scholar

Part of the book series: Lecture Notes in Computer Science (LNCS, volume 3548)

Part of the book sub series: Security and Cryptology (LNSC)

Included in the following conference series:

Conference proceedings info: DIMVA 2005.

This is a preview of subscription content, log in via an institution to check access.

Access this book

Log in via an institution
eBook USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Other ways to access

Licence this eBook for your library

Institutional subscriptions

Table of contents (14 papers)

  1. Front Matter

    Download chapter PDF

  2. Obfuscated Code Detection

    1. Analyzing Memory Accesses in Obfuscated x86 Executables

      • Michael Venable, Mohamed R. Chouchane, Md Enamul Karim, Arun Lakhotia
      Pages 1-18

    2. Hybrid Engine for Polymorphic Shellcode Detection

      • Udo Payer, Peter Teufl, Mario Lamberger
      Pages 19-31

  3. Honeypots

    1. Experiences Using Minos as a Tool for Capturing and Analyzing Novel Worms for Unknown Vulnerabilities

      • Jedidiah R. Crandall, S. Felix Wu, Frederic T. Chong
      Pages 32-50

    2. A Pointillist Approach for Comparing Honeypots

      • Fabien Pouget, Thorsten Holz
      Pages 51-68

  4. Vulnerability Assessment and Exploit Analysis

    1. Automatic Detection of Attacks on Cryptographic Protocols: A Case Study

      • Ivan Cibrario B., Luca Durante, Riccardo Sisto, Adriano Valenzano
      Pages 69-84

    2. METAL – A Tool for Extracting Attack Manifestations

      • Ulf Larson, Emilie Lundin-Barse, Erland Jonsson
      Pages 85-102

    3. Flow-Level Traffic Analysis of the Blaster and Sobig Worm Outbreaks in an Internet Backbone

      • Thomas Dübendorfer, Arno Wagner, Theus Hossmann, Bernhard Plattner
      Pages 103-122

  5. Anomaly Detection

    1. A Learning-Based Approach to the Detection of SQL Attacks

      • Fredrik Valeur, Darren Mutz, Giovanni Vigna
      Pages 123-140

    2. Masquerade Detection via Customized Grammars

      • Mario Latendresse
      Pages 141-159

    3. A Prevention Model for Algorithmic Complexity Attacks

      • Suraiya Khan, Issa Traore
      Pages 160-173

  6. Misuse Detection

    1. Detecting Malicious Code by Model Checking

      • Johannes Kinder, Stefan Katzenbeisser, Christian Schallhart, Helmut Veith
      Pages 174-187

    2. Improving the Efficiency of Misuse Detection

      • Michael Meier, Sebastian Schmerl, Hartmut Koenig
      Pages 188-205

  7. Distributed Intrusion Detection and IDS Testing

    1. Enhancing the Accuracy of Network-Based Intrusion Detection with Host-Based Context

      • Holger Dreger, Christian Kreibich, Vern Paxson, Robin Sommer
      Pages 206-221

    2. TCPtransform: Property-Oriented TCP Traffic Transformation

      • Seung-Sun Hong, Fiona Wong, S. Felix Wu, Bjorn Lilja, Tony Y. Yohansson, Henric Johnson et al.
      Pages 222-240

  8. Back Matter

    Download chapter PDF
Back to top

Other volumes

  1. Detection of Intrusions and Malware, and Vulnerability Assessment

Keywords

About this book

On behalf of the Program Committee, it is our pleasure to present to you the proceedings of the 2nd GI SIG SIDAR Conference on Detection of Intrusions & Malware, and Vulnerability Assessment (DIMVA). DIMVA is organized by the Special Interest Group Security — Intrusion Detection and Response (SIDAR) of the German Informatics Society (GI) as an annual conference that brings together experts from throughout the world to discuss the state of the art in the areas of intrusion detection, detection of malware, and assessment of vulnerabilities. TheDIMVA2005ProgramCommitteereceived51submissionsfrom18co- tries. This represents an increase of approximately 25% compared with the n- ber of submissions last year. All submissions were carefully reviewed by at least three Program Committee members or external experts according to the cri- ria of scienti?c novelty, importance to the ?eld, and technical quality. The ?nal selection took place at a meeting held on March 18, 2005, in Zurich, Switz- land. Fourteen full papers were selected for presentation and publication in the conference proceedings. In addition, three papers were selected for presentation in the industry track of the conference. The program featured both theoretical and practical research results, which were grouped into six sessions. Philip Att?eld from the Northwest Security Institute gave the opening keynote speech. The slides presented by the authors are available on the DIMVA 2005 Web site at http://www.dimva.org/dimva2005 We sincerely thank all those who submitted papers as well as the Program Committee members and the external reviewers for their valuable contributions.

Editors and Affiliations

  • IBM Research GmbH, Rüschlikon, Switzerland

    Klaus Julisch

  • Secure Systems Lab, Technical University of Vienna, Vienna, Austria

    Christopher Kruegel

Bibliographic Information

Publish with us

Policies and ethics

Back to top

Search

Navigation