A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2017; you can also visit the original URL.
The file type is application/pdf
.
Log auditing through model-checking
Proceedings. 14th IEEE Computer Security Foundations Workshop, 2001.
Log auditing is a basic intrusion detection mechanism, whereby attacks are detected by uncovering matches of sequences of events against signatures. We argue that this is naturally expressed as a modelchecking problem against linear Kripke models. A variant of the classic linear time temporal logic of Manna and Pnueli with first-order variables is first investigated in this framework. But this logic is in dire need of refinement, as far as expressiveness and efficiency are concerned. We
doi:10.1109/csfw.2001.930148
dblp:conf/csfw/RogerG01
fatcat:5sw3collmnaulhnopzhnl76sm4