SPECIFICATION-BASED INTRUSION DETECTION SYSTEM FOR CARRIER ETHERNET
Pan Jieke, João Redol, Miguel Correia
2007
Abstract
Layered network architectures (OSI, TCP/IP) separate functionality in layers, allowing them to be designed and implemented independently. However, from the security point of view, once a lower layer is compromised, the reliability of the higher layers can be impaired. This paper is about the security of the Data Link Layer, which can affect the reliability of higher layers, like TCP, HTTP and other World-Wide Web protocols. The paper analyzes security-wise a layer 2 protocol – the Spanning Tree Protocol (STP), part of the Ethernet suite – and presents a solution to detect attacks against this protocol using Specification-based Intrusion Detection.
DownloadPaper Citation
in Harvard Style
Jieke P., Redol J. and Correia M. (2007). SPECIFICATION-BASED INTRUSION DETECTION SYSTEM FOR CARRIER ETHERNET . In Proceedings of the Third International Conference on Web Information Systems and Technologies - Volume 1: WEBIST, ISBN 978-972-8865-77-1, pages 426-429. DOI: 10.5220/0001283204260429
in Bibtex Style
@conference{webist07,
author={Pan Jieke and João Redol and Miguel Correia},
title={SPECIFICATION-BASED INTRUSION DETECTION SYSTEM FOR CARRIER ETHERNET},
booktitle={Proceedings of the Third International Conference on Web Information Systems and Technologies - Volume 1: WEBIST,},
year={2007},
pages={426-429},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0001283204260429},
isbn={978-972-8865-77-1},
}
in EndNote Style
TY - CONF
JO - Proceedings of the Third International Conference on Web Information Systems and Technologies - Volume 1: WEBIST,
TI - SPECIFICATION-BASED INTRUSION DETECTION SYSTEM FOR CARRIER ETHERNET
SN - 978-972-8865-77-1
AU - Jieke P.
AU - Redol J.
AU - Correia M.
PY - 2007
SP - 426
EP - 429
DO - 10.5220/0001283204260429