Personal tools
You are here: Home Projects 2nd_year Project 331 - Intrusion Detection and Prevention
« July 2008 »
Su Mo Tu We Th Fr Sa
1 2 3 4 5
6 7 8 9 10 11 12
13 14 15 16 17 18 19
20 21 22 23 24 25 26
27 28 29 30 31
 

Project 331 ( 2nd year )

Intrusion Detection and Prevention Technology Development and System Integration

This project is developing a helpful, self-adapt to its environment, prevention system developing platform, namely, an Intrusion Detection Event Analysis System (IDEAS). Utilizing machine learning and data mining techniques, IDEAS increases alert efficiency and detection rate according to its current network environment, including network traffic, intrusive attack events, and environmental assets risk analysis. It also proceeds with alert correlation to find the most urgent alerts and profile the overall attacking concept. Then, based on network environment, it will auto-adjust to the most suitable detection method, prevention framework and emergency principle. Thus, it helps the system managers to correlate low-level alerts, to reduce redundancies of invalid attack's events, and to focus on the serious events or alerts.
The IDEAS provides a complete user interface for managers to monitor network security of the entire environment in real time. Besides, this system respectively collects attack events from major information security website, evaluates the risk of network system, analyzes the statistics of network flow, classifies security level through risk evaluation mechanism, correlates analysis results, figures the attack graph with response mechanism, simulates the system security of environment dependable and analyzes IDEAS interface.

Member List

Country Organization Full Name Title E-mail
Taiwan
TWISC
Laih, Chi-Sung
PI
Taiwan
TWISC
Lee, Hahn-Ming
Co-PI
Taiwan
TWISC
Lee, Yuh-Jye
Investigator
Taiwan
TWISC
Pao, Hsing-Kuo
Co-PI
Taiwan
TWISC
Wu, Yi-Leh
Co-PI
Taiwan
TWISC
Li, Jung-Shian
Investigator
Taiwan
TWISC
Yang, Ching-Nung
Investigator
Taiwan
TWISC
Lin, Heng-Sheng
Assistant
Taiwan
TWISC
Mao, Ching-Hao
Student
US
CMU
Tsuhan Chen
CPI

Project 300 Orgnization Chart (in Hanzi)

Required Documents (2nd year)

Statement of Work

White Paper

Self-Assessment Presentation File (Internal Review Meeting)

Midterm Report (External Review Meeting)

Final Report (External Review Meeting)

Prototypes & Systems

Publications

Others

Progress Reports

Travel Reports

Other Documents

Other Private Documents (for project members only)

External Links