EPSRC logo

Details of Grant 

EPSRC Reference: GR/N02597/01
Title: A GENERIC ARCHITECTURE FOR INTRUSION SPECIFICATION AND MISUSE DETECTION IN IT SYSTEMS
Principal Investigator: Furnell, Professor SM
Other Investigators:
Ifeachor, Professor E
Researcher Co-Investigators:
Project Partners:
Metropolitan Police Service Orange France Telecom Group Reflex Manufact Systems
Department: Communication & Electronic Eng
Organisation: University of Plymouth
Scheme: Standard Research (Pre-FEC)
Starts: 01 September 2000 Ends: 31 May 2004 Value (£): 50,367
EPSRC Research Topic Classifications:
Human-Computer Interactions Networks & Distributed Systems
Software Engineering
EPSRC Industrial Sector Classifications:
Communications Financial Services
Retail Information Technologies
No relevance to Underpinning Sectors
Related Grants:
Panel History:  
Summary on Grant Application Form
The ever-increasing use of, and dependence upon, IT in the information society means that security is a major issue, which is likely to grow in importance in years to come. The research is concerned with intrusion specification and detection in IT and networked systems, which represent important areas of security given the continual increase in reported incidents of computer crime and abuse. Specifically, the research will advance the state of the art in intrusion detection systems by providing mechanisms to, firstly, enable the specification of intrusion scenarios in a system-independent manner and, secondly, facilitate real-time identification and prevention of unauthorised activities by legitimate users. The work will undertake analysis and characterisation of known intrusion scenarios, leading to the formal definition of a generic Intrusion Specification Language (ISL) which will then be mapped onto practical systems. The research will also identify strategies for misuse detection , resulting in the implementation and evaluation of a prototype system. The ISL and misuse detection architecture represent research areas that have yet to be addressed and as such, the outcome of this project will represent a fundamental contribution to the intrusion detection domain.
Key Findings
This information can now be found on Gateway to Research (GtR) http://gtr.rcuk.ac.uk
Potential use in non-academic contexts
This information can now be found on Gateway to Research (GtR) http://gtr.rcuk.ac.uk
Impacts
Description This information can now be found on Gateway to Research (GtR) http://gtr.rcuk.ac.uk
Summary
Date Materialised
Sectors submitted by the Researcher
This information can now be found on Gateway to Research (GtR) http://gtr.rcuk.ac.uk
Project URL:  
Further Information:  
Organisation Website: http://www.plym.ac.uk