© 2001

Recent Advances in Intrusion Detection

4th International Symposium, RAID 2001 Davis, CA, USA, October 10–12, 2001 Proceedings

  • Wenke Lee
  • Ludovic Mé
  • Andreas Wespi
Conference proceedings RAID 2001

Part of the Lecture Notes in Computer Science book series (LNCS, volume 2212)

Table of contents

  1. Front Matter
    Pages I-X
  2. Modeling Attacks

    1. Jean-Philippe Pouzol, Mireille Ducasé
      Pages 1-21
  3. Logging and IDS Integration

    1. Magnus Almgren, Ulf Lindqvist
      Pages 22-36
  4. IDS Cooperation

    1. Alfonso Valdes, Keith Skinner
      Pages 54-68
    2. Giovanni Vigna, Richard A. Kemmerer, Per Blix
      Pages 69-84
    3. Hervé Debar, Andreas Wespi
      Pages 85-103
  5. Anomaly Detection

    1. Robert K. Cunningham, Craig S. Stevenson
      Pages 104-116
    2. Paul D. Williams, Kevin P. Anchor, John L. Bebo, Gregg H. Gunsch, Gary D. Lamont
      Pages 117-133
  6. Intrusion Tolerance

    1. Dan Sterne, Kelly Djahandari, Brett Wilson, Bill Babson, Dan Schnackenberg, Harley Holliday et al.
      Pages 134-149
  7. Legal Aspects

  8. Specification-Based IDS

    1. Prem Uppuluri, R. Sekar
      Pages 172-189
    2. Calvin Ko, Paul Brutch, Jeff Rowe, Guy Tsafnat, Karl Levitt
      Pages 190-203
  9. Back Matter
    Pages 205-205

About these proceedings


On behalf of the program committee, it is our pleasure to present to you the proceedings of the fourth Recent Advances in Intrusion Detection Symposium. The RAID 2001program committee received 55 paper submissions from 13 countries. All submissions were carefully reviewed by several members of the program committee on the criteria of scienti?c novelty, importance to the ?eld, and technical quality. Final selection took place at a meeting held on May 16-17 in Oakland, California. Twelve papers were selected for presentation and pub- cation in the conference proceedings. In addition, nine papers, presenting work in progress, were selected for presentation. The program included both fundamental research and practical issues: l- ging and IDS integration, attack modeling, anomaly detection, speci?cati- based IDS, IDS assessment, IDS cooperation, intrusion tolerance, and legal - pects. RAID 2001also hosted two panels, one on “The Present and Future of IDS Testing Methodologies,” a subject of major concern for all IDS users and de- gners, and one on “Intrusion Tolerance,” an emerging research area of increasing importance. Dr. Bill Hancock, Senior Vice President and Chief Security O?cer of Exodus Communications, Inc., delivered a keynote speech “Real world intrusion det- tion or how not to become a deer in the headlights of an attacker’s car on the information superhighway”. The slides presented by the authors, the 9 papers which are not in the p- ceedings, and the slides presented by the panelists are available on the website of the RAID symposium series,


Audit control Code Computer Denial of Service Information Intrusion Detection Logging authentication cryptanalysis cryptographic attacks data mining distributed intrusion privacy security trust

Editors and affiliations

  • Wenke Lee
    • 1
  • Ludovic Mé
    • 2
  • Andreas Wespi
    • 3
  1. 1.Georgia Institute of TechnologyCollege of ComputingAtlantaUSA
  2. 2.SUPELECCesson Sevigne CedexFrance
  3. 3.IBM ResearchZurich Research LaboratoryRüschlikonSwitzerland

Bibliographic information

Industry Sectors
Chemical Manufacturing
IT & Software
Consumer Packaged Goods
Finance, Business & Banking