References

Next: About this document Up: Interactive Security Assistance for Previous: Prototypes

References

D. Anderson, T. Frivold, and A. Valdes. Next-generation Intrusion Detection Expert System (NIDES) A Summary. Technical Report SRI-CSL-95-07, SRI Computer Science Laboratory, May 1995.

2

D. Anderson, T. F. Lunt, H. S. Javitz, A. Tamaru, and A. Valdes. Detecting Unusual Program Behavior Using the Statistical Component of the Next-generation Intrusion Detection Expert System (NIDES). Technical Report SRI-CSL-95-06, SRI Computer Science Laboratory, May 1995.

3

J. P. Anderson. Computer Security Threat Monitoring and Surveillance. Technical report, James P Anderson Co., Fort Washington, PA, apr 1980.

4

D.E. Bella and L.J. LaPadula. Secure computer systems: Mathematical foundations and model. Technical Report M74-244, The MITRE Corporation, Bedford, Massachussetts, May 1973.

5

K.J. Biba. Integrity constraints for secure computer systems. Technical Report ESD-TR-76-372, USAF Electronic Systems Division, Bedford, Massachussetts, April 1977.

6

Per Bothner. Byte-compilation of scheme using java byte-codes. http://www.cygnus.com/~bothner/scm2java.html, may 1996.

7

Luca Cardelli. Obliq - a language with distributed scope. Technical report, Digital Equipment Corporation, Systems Research Center. http://www.research.digital.com/SRC/personal/Luca_Cardelli/Obliq/ObliqPaper -html/ObliqPaper.html.

8

Fred Cohen. Implications of computer viruses and current methods of defence. Computers & Security, apr 1988.

9

Mark Crosbie and Eugene Spafford. Defending a Computer System using Autonomous Agents. In 18th National Information Systems Security Conference, oct 1995.

http://www.cs.purdue.edu/homes/mcrosbie/research/NISSC95. ps.

10

Mark Crosbie and Eugene Spafford. Evolving event-driven programs. Technical report, Purdue University, April 1996.

http://www.cs.purdue.edu/homes/mcrosbie/research/gp96.ps.

11

Drew Dean, Edward W. Felten, and Dan S. Wallach. Java security: From hotjava to netscape and beyond. In IEEE Symposium on Security and Privacy, may 1996. http://www.cs.princeton.edu/sip/pub/preprint.ps.

12

Drew Dean, Edward W. Felten, and Dan S. Wallach. March 1996 security flaw: Extended description.

http://www.cs.princeton.edu/sip/news/non-expert.html, mar 1996.

13

Stephanie Forrest, Steven A. Hofmeyr, and Anil Somayaji. A sense of self for unix processes. In 1996 Symposium on Security and Privacy, 1996.

ftp://ftp.cs.unm.edu/pub/forrest/ieee-sp-96-unix.ps.gz.

14

Jeremy Frank. Artificial intelligence and intrusion detection: Current and future directions. In National 17th Computer Security Conference, june 1994. http://seclab.cs.ucdavis.edu/~frank/ncsc.94.ps.

15

Felix Gallo. Penguin homepage. http://coriolan.amicus.com/penguin.html.

16

Norm Hardy. The confused deputy. Operating System Review, 22(4):36:38, Oct 1988. http://www.cis.upenn.edu/~KeyKOS/ConfusedDeputy.html.

17

David Hopwood. Security bugs in java. http://ferret.lmh.ox.ac.uk/~david/java/bugs/.

18

Agorics Inc. Joule: Distributed application foundations. Technical Report ADd003.4P, Agorics Inc., dec 1995. http://www.webcom.com/agorics/joule.html.

19

General Magic Inc. Magic Cap Concepts, chapter Telescript and Magic cap, Defining and Sending Custom Classes.

http://www.genmagic.com/MagicCapDocs/Concepts/Telescript. html.

20

Harold S. Javitz and A. Valdez. The NIDES Statistical Component: Description and Justification. Technical report, SRI International, March 1993. ftp://ftp.csl.sri.com:/pub/nides/statreport.ps.

21

Jeffrey O. Kephart. A biologically inspired immune system for computers. In Artificial Life IV. MIT Press, 1994.

http://ftp.sterling.com/COAST/doc/viruses/immune.ps.Z.

22

Calvin Ko, George Fink, and Karl Levitt. Automated detection of vulnerabilities in priviledged programs by execution monitoring. In Proc. 10th Annual Computer Security Applications Conference, 1994. http://seclab.cs.ucdavis.edu/papers/kfl94.ps.

23

Sandeep Kumar and Eugene Spafford. An Application of Pattern Matching in Intrusion Detection. Technical Report 94-013, Purdue University, Department of Computer Sciences, March 1994.

24

Mark D. LaDue. Hostile applets home page.

http://www.math.gatech.edu/~mladue/HostileApplets.html.

25

Karl Levitt and Christopher Wee. A framework for auditing objects. Technical report, Department of Computer Science, UC Davis, 1995. .

26

Raymond W. Lo and Karl N. Levitt. MCF:: a malicious code filter. Computers & Security, pages 541--566, 1995.

27

Teresa F Lunt. A Survey of Intrusion Detection Techniques. Computers & Security, 12(4):405--418, June 1993.

28

Peter Magnusson. SimICS User's Manual. SICS, 1996. http://www.sics.se/simics/.

29

Ludovic Me. Genetic algorithms, an alternative tool for security audit trails analysis.

http://www.supelec-rennes.fr/rennes/si/equipe/lme/these/o akland95/oakland95.html, 1995.

30

Sun Microsystems. The tcl 7.5 and tk 4.1 releases, 1996. http://www.sunlabs.com:80/research/tcl/4.1.html.

31

Departement of Defence. Departement of defence trusted computer system evaluation criteria. Technical report, National Computer Security Center, 1985.

32

C. H. Pfleeger. Security in Computing, chapter 6. Protection Services for Users of Operating Systems. Prentice Hall, 1992.

33

Lars Rasmusson and Sverker Jansson. Simulated social control for secure internet commerce (position paper). In New Security Paradigms Workshop '96, apr 1996.

http://www.sics.se/~lra/simsoccntr/simsoccntr.html.

34

Lars Rasmusson, Andreas Rasmusson, and Sverker Jansson. Reactive security and social control. http://www.sics.se/~ara/papers/nsp-panel.ps, aug 1996.

35

Finjan Software. Finjan software home page. Home Page. http://www.finjan.com.

36

Finjan Software. Java security: Issues & solutions, 1996. http://www.finjan.com/js.html.

37

B. C. Soh and T. S. Dillon. Setting optimal intrusion-detection thresholds. Computers & Security, 14(7):621--631, 1995.

38

Bjarne Stroustrup. The C++ progamming language, chapter 12.3, page 423. Addison Wesley, 2 edition, 1992.

39

Sun. Hotjava : The security story. Technical report, Sun Microsystems. http://java.sun.com/sfaq/may95/security.html.

40

Sun Microsystems. Man Pages: Basic Security Module (BSM) on Solaris.

41

Sun Microsystems. Man Pages: truss.

42

Aurobindo Sundaram. An introducion to intrusion detection. Crossroads, the ACM Student Magazine, apr 1996. http://www.acm.org/crossroads/xrds2-4/intrus.html.

43

A. S. Tanenbaum. Modern operating systems. Prentice Hall, 1992.

44

Joseph Tardo and Luis Valente. Mobile agent security and telescript. Technical report, General Magic, Inc, 1996. http://www.genmagic.com/Telescript/Compcon96.ps.

45

Henry S. Teng, Kaihu Chen, and Stephen C Lu. Security Audit Trail Analysis Using Inductively Generated Predictive Rules. In Proceedings of the 6th Conference on Artificial Intelligence Applications, pages 24--29. IEEE, IEEE Service Center, Piscataway, NJ, March 1990.

46

Frank Yellin. Low level security in java. In WWW4 Conference, dec 1995.

http://www.w3.org/puc/Conferences/WWW4/Papers/197/40.html.

47

Chad Yoshikawa, Brent Chun, and David Culler. Web graffiti & high bandwidth covert channels using java. Technical report, U.C. Berkeley Computer Science Division, 1996. http://whenever.CS.Berkeley.EDU/graffiti/.

Andreas Rasmusson
Fri Oct 25 11:36:45 MET DST 1996