{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,3,19]],"date-time":"2025-03-19T13:20:44Z","timestamp":1742390444956,"version":"3.33.0"},"publisher-location":"Berlin, Heidelberg","reference-count":27,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783540752080"},{"type":"electronic","value":"9783540752097"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"DOI":"10.1007\/978-3-540-75209-7_5","type":"book-chapter","created":{"date-parts":[[2007,9,11]],"date-time":"2007-09-11T07:42:37Z","timestamp":1189496557000},"page":"61-75","source":"Crossref","is-referenced-by-count":7,"title":["Model-Driven, Network-Context Sensitive Intrusion Detection"],"prefix":"10.1007","author":[{"given":"Frederic","family":"Massicotte","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Mathieu","family":"Couture","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Lionel","family":"Briand","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yvan","family":"Labiche","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"5_CR1","unstructured":"Anderson, D., Frivold, T., Valdes, A.: Next-generation Intrusion Detection Expert System (NIDES): A Summary. SRI International, Technical Report SRI-CSL-95-07 (May 1995), http:\/\/www.sdl.sri.com\/nides\/reports\/4sri.pdf"},{"key":"5_CR2","unstructured":"Couture, M., Massicotte, F.: Syst\u00e8mes et Languages de D\u00e9tection d\u2019Intrusion. CRC, Technical Report CRC-RP-2005-001 (July 2005)"},{"key":"5_CR3","doi-asserted-by":"crossref","unstructured":"Deraison, R., Gula, R., Hayton, T.: Passive Vulnerability Scanning - An Introduction to NeVO. Tenable Network Security, White Paper (2003), www.tenablesecurity.com\/","DOI":"10.1016\/S1353-4858(03)00706-2"},{"key":"5_CR4","doi-asserted-by":"crossref","unstructured":"Distefano, D., Katoen, J.-P., Rensink, A.: On A Temporal Logic For Object-Based Systems. In: Proc. IFIP Formal Methods for Open Object-Based Distributed Systems, pp. 305\u2013326 (2000)","DOI":"10.1007\/978-0-387-35520-7_16"},{"key":"5_CR5","unstructured":"Eclipse Foundation, Tutorial: Querying EMF Models with OCL, http:\/\/help.eclipse.org\/"},{"key":"5_CR6","doi-asserted-by":"crossref","unstructured":"Goldman, R.P., Heimerdinger, W., Geib, C.W., Thomas, V., Carter, R.L.: Information modeling for intrusion report aggregation. In: Proc. DARPA Information Survivability Conference and Exposition, pp. 329\u2013342 (2001)","DOI":"10.1109\/DISCEX.2001.932228"},{"key":"5_CR7","unstructured":"Green, C., Roesch, M.: The Snort Project: version 2.3.2., User Manual (2003), www.snort.org"},{"key":"5_CR8","volume-title":"MDA Explained","author":"A. Kleppe","year":"2003","unstructured":"Kleppe, A., Warmer, J., Bast, W.: MDA Explained. Addison-Wesley, Reading (2003)"},{"key":"5_CR9","unstructured":"Kumar, S., Spafford, E.: A Software Architecture to Support Misuse Intrusion Detection. In: Proc. National Information Security Conference, pp. 194\u2013204 (1995)"},{"key":"5_CR10","doi-asserted-by":"crossref","unstructured":"Lindqvist, U., Porras, P.A.: Detecting Computer and Network Misuse through the Prediction-Based Expert System Toolset (P-BEST). In: Proc. IEEE Symposium on Security and Privacy, pp. 146\u2013161 (1999)","DOI":"10.1109\/SECPRI.1999.766911"},{"key":"5_CR11","unstructured":"Massicotte, F.: Using Object-Oriented Modeling for Specifying and Designing a Network-Context Sensitive Intrusion Detection System, Masters Thesis, Carleton University, Systems and Computer Engineering (2005)"},{"key":"5_CR12","unstructured":"Massicotte, F., Couture, M., Briand, L.C., Labiche, Y.: Context-Based Intrusion Detection Using Snort, Nessus and Bugtraq Databases. In: Proc. Annual Conference on Privacy, Security and Trust (2005)"},{"key":"5_CR13","doi-asserted-by":"crossref","unstructured":"Massicotte, F., Gagnon, F., Labiche, Y., Briand, L., Couture, M.: Automatic Evaluation of Intrusion Detection Systems. In: Proc. Annual Computer Security Applications Conference (2006)","DOI":"10.1109\/ACSAC.2006.15"},{"key":"5_CR14","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"crossref","first-page":"94","DOI":"10.1007\/978-3-540-45248-5_6","volume-title":"Recent Advances in Intrusion Detection","author":"B. Morin","year":"2003","unstructured":"Morin, B., Debar, H.: Correlation of Intrusion Symptoms: an Application of Chronicles. In: Vigna, G., Kr\u00fcgel, C., Jonsson, E. (eds.) RAID 2003. LNCS, vol.\u00a02820, pp. 94\u2013112. Springer, Heidelberg (2003)"},{"key":"5_CR15","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"177","DOI":"10.1007\/3-540-36084-0_7","volume-title":"Recent Advances in Intrusion Detection","author":"B. Morin","year":"2002","unstructured":"Morin, B., M\u00e9, L., Debar, H., Ducass\u00e9, M.: M2d2: A formal data model for ids alert correlation. In: Wespi, A., Vigna, G., Deri, L. (eds.) RAID 2002. LNCS, vol.\u00a02516, pp. 177\u2013198. Springer, Heidelberg (2002)"},{"issue":"23-24","key":"5_CR16","doi-asserted-by":"publisher","first-page":"2435","DOI":"10.1016\/S1389-1286(99)00112-7","volume":"31","author":"V. Paxson","year":"1999","unstructured":"Paxson, V.: BRO: A System for Detecting Network Intrusion in Real-Time. Computer Networks\u00a031(23-24), 2435\u20132463 (1999)","journal-title":"Computer Networks"},{"key":"5_CR17","doi-asserted-by":"crossref","unstructured":"Roger, M., Goubault-Larrecq, J.: Log Auditing though Model Checking. In: Proc. IEEE Computer Security Foundations Workshop, pp. 220\u2013236 (2001)","DOI":"10.1109\/CSFW.2001.930148"},{"key":"5_CR18","unstructured":"Security Focus, Bugtraq Homepage, http:\/\/www.securityfocus.com\/"},{"key":"5_CR19","doi-asserted-by":"crossref","unstructured":"Sekar, R., Guang, Y., Verma, S., Shanbhag, T.: A High-Performance Network Intrusion Detection System. In: Proc. ACM Symposium on Computer and Communication Security, pp. 8\u201317 (1999)","DOI":"10.1145\/319709.319712"},{"key":"5_CR20","doi-asserted-by":"crossref","unstructured":"Sommer, R., Paxson, V.: Enhancing byte-level network intrusion detection signatures with context. In: Proc. ACM Conference on Computer and Communications Security (2003)","DOI":"10.1145\/948109.948145"},{"key":"5_CR21","volume-title":"Data and Computer Communications","author":"W. Stallings","year":"1996","unstructured":"Stallings, W.: Data and Computer Communications. Addison-Wesley, Reading (1996)"},{"key":"5_CR22","unstructured":"Tenable Network Security, Nessus Scripts, www.nessus.org\/plugins\/"},{"key":"5_CR23","unstructured":"Vigna, G.: A topological characterization of tcp\/ip security. Politecnico di Milano, Technical Report TR-96.156 (1996)"},{"key":"5_CR24","doi-asserted-by":"crossref","unstructured":"Vigna, G., Kemmerer, R.A.: Netstat: A network-based intrusion detection approach. In: Proc. IEEE Annual Computer Security Applications Conference, pp. 25\u201334 (1998)","DOI":"10.1109\/CSAC.1998.738566"},{"key":"5_CR25","doi-asserted-by":"crossref","unstructured":"Vigna, G., Valeur, F., Kemmerer, R.: Designing and implementing a family of intrusion detection systems. In: Proc. ACM SIGSOFT European Software Engineering Conference, pp. 88\u201397 (2003)","DOI":"10.1145\/940071.940084"},{"key":"5_CR26","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","DOI":"10.1007\/11572961_22","volume-title":"Advances in Computer Systems Architecture","author":"J. Zhou","year":"2005","unstructured":"Zhou, J., Carlson, A.J., Bishop, M.: Verify Results of Network Intrusion Alerts Using Lightweight Protocol Analysis. In: Srikanthan, T., Xue, J., Chang, C.-H. (eds.) ACSAC 2005. LNCS, vol.\u00a03740, Springer, Heidelberg (2005)"},{"key":"5_CR27","unstructured":"Ziemann, P., Gogolla, M.: An Extension of OCL with Temporal Logic. In: Proc. Workshop on Critical Systems Development with UML, in conjunction with the UML conference (2002)"}],"container-title":["Lecture Notes in Computer Science","Model Driven Engineering Languages and Systems"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-540-75209-7_5.pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,1,20]],"date-time":"2025-01-20T23:12:48Z","timestamp":1737414768000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-540-75209-7_5"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[null]]},"ISBN":["9783540752080","9783540752097"],"references-count":27,"URL":"https:\/\/doi.org\/10.1007\/978-3-540-75209-7_5","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[]}}