A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2017; you can also visit the original URL.
The file type is application/pdf
.
Intrusion detection via static analysis
Proceedings 2001 IEEE Symposium on Security and Privacy. S&P 2001
One of the primary challenges in intrusion detection is modelling typical application behavior, so that we can recognize attacks by their atypical effects without raising too many false alarms. We show how static analysis may be used to automatically derive a model of application behavior. The result is a host-based intrusion detection system with three advantages: a high degree of automation, protection against a broad class of attacks based on corrupted code, and the elimination of false
doi:10.1109/secpri.2001.924296
dblp:conf/sp/WagnerD01
fatcat:esatk6vhtjbwjhsvnakx42fcra