|
|
Sponsored Content
Special Forums
News, Links, Events and Announcements
Complex Event Processing RSS News
Coral8: Event Stream Processing and Intrusion Detection
Post 302155138 by Linux Bot on Thursday 3rd of January 2008 04:10:17 AM
01-03-2008
Coral8: Event Stream Processing and Intrusion Detection
Tim Bass
Thu, 03 Jan 2008 09:08:00 +0000
Not quite ready for prime-time,*we*have been testing our home-grown UNIX domain socket adapter using Coral8 Java APIs.** We are using this adapter to evaluate and demonstrate*stream processing*with intrusion detection systems (IDS) using event stream processing to reduce false alarms, detect derived situations from the raw intrusion event data, and feed a security management visualization dashboard.
You can click on the teaser image below to see*more*of our first IDS screenshots from Coral8’s Studio stream visualization tool .
If you click on the*image above, you will four additional event stream properties.* For this*part of the demo, there are 14 total IDS properties in the event stream, but we only show 5 properties in this cropped screen capture.
I am quite sure that we could do similar integration with other event stream*processing engines, but fortunately Coral8 makes it easy to download, start developing and testing.*
Source...
Thu, 03 Jan 2008 09:08:00 +0000
Not quite ready for prime-time,*we*have been testing our home-grown UNIX domain socket adapter using Coral8 Java APIs.** We are using this adapter to evaluate and demonstrate*stream processing*with intrusion detection systems (IDS) using event stream processing to reduce false alarms, detect derived situations from the raw intrusion event data, and feed a security management visualization dashboard.
You can click on the teaser image below to see*more*of our first IDS screenshots from Coral8’s Studio stream visualization tool .
I am quite sure that we could do similar integration with other event stream*processing engines, but fortunately Coral8 makes it easy to download, start developing and testing.*
Source...
|
|
4 More Discussions You Might Find Interesting
1. Cybersecurity
can u give me a code for host based intrusion detection using system call introspection... (5 Replies)
Discussion started by: aravind007
5 Replies
2. Shell Programming and Scripting
If you have a very static Linux server and you want to make sure it's not messed with, here's a simple script that will tell you if any files have been tampered with. It's not as fancy or as secure as tripwire or those others, but it is very simple. It can be easily adapted to any *NIX OS.
... (3 Replies)
Discussion started by: otheus
3 Replies
3. Shell Programming and Scripting
Hello all
I have a script but I failed on the creation of
Script is any is carried out in the shell sends the owner of the server, the message is has been implemented
For example, functioned as a detection system intruders but in smaller
Is it possible to help if you allow
I want the... (4 Replies)
Discussion started by: x-zer0
4 Replies
4. Programming
Hey, for the purpose of a research project I need to know if a specific type of parallel processing is being utilized by any user-run programs. Is there a way to detect whether a program either returns a value to another program at the end of execution, or just utilizes any form of parallel... (4 Replies)
Discussion started by: azar.zorn
4 Replies
LEARN ABOUT DEBIAN
device::usb::pcsensor::hidtemper::temper::internal
Device::USB::PCSensor::HidTEMPer::TEMPer::Internal(3pm) User Contributed Perl DocumentationDevice::USB::PCSensor::HidTEMPer::TEMPer::Internal(3pm) Device::USB::PCSensor::HidTEMPer::TEMPer::Internal - The HidTEMPer internal sensor VERSION
Version 0.02 SYNOPSIS
None DESCRIPTION
This is the implementation of the HidTEMPer internal sensor. CONSTANTS o MAX_TEMPERATURE The highest temperature(120 degrees celsius) this sensor can detect. o MIN_TEMPERATURE The lowest temperature(-40 degrees celsius) this sensor can detect. METHODS o celsius() Returns the current temperature from the device in celsius degrees. INHERIT METHODS FROM
Device::USB::PCSensor::HidTEMPer::Sensor DEPENDENCIES
This module internally includes and takes use of the following packages: use Device::USB::PCSensor::HidTEMPer::Sensor; This module uses the strict and warning pragmas. BUGS
Please report any bugs or missing features using the CPAN RT tool. FOR MORE INFORMATION
None AUTHOR
Magnus Sulland < msulland@cpan.org > ACKNOWLEDGEMENTS
This code is inspired by Relavak's source code and the comments found at: http://relavak.wordpress.com/2009/10/17/ temper-temperature-sensor-linux-driver/ COPYRIGHT &; LICENSE Copyright (c) 2010 Magnus Sulland This program is free software; you can redistribute it and/or modify it under the same terms as Perl itself. perl v5.10.1 2010-07-24 Device::USB::PCSensor::HidTEMPer::TEMPer::Internal(3pm)