Privacy-Respecting Intrusion Detection
Buch in deiner Nähe kaufen
Beschreibung
With our society's growing dependency on information technology systems (IT), IT security is crucial. To properly respond to misuse or abusive activity in IT systems, one needs to establish the capability to detect and understand improper activity. Intrusion Detection Systems observe activity occurring in the IT system, record these observations in audit data, and analyze collected audit data to detect misuse. Collecting and processing audit data for misuse detection conflicts with expectations and rights of system users regarding their privacy. A viable solution is replacing personal data with pseudonyms in audit data.
Privacy-Respecting Intrusion Detection introduces technical purpose binding, restricting the linkability of pseudonyms in audit data, to the amount required for misuse detection. Also, it limits the recovery of original personal data to pseudonyms involved in a detected misuse scenario. This book includes case studies with constructively validated solutions by providing algorithms.
Privacy-Respecting Intrusion Detection is designed for a professional audience, composed of practitioners and researchers in industry. This book is also suitable as an advance-level text in the computer science field.
Foreword by Richard Kemmerer, University of California, Santa Barbara, USA
Intrusion detection systems (IDS) monitor computer systems, record audit data and analyze the collected data in order to detect misuse. The recorded audit data documents user behavior and contains personal data of system users. As a result, collecting and processing audit data for misuse detection conflicts with pertinent privacy law. Privacy-Respecting Intrusion Detection introduces the concept of technical purpose binding, which restricts the linkability of pseudonyms in audit data to the amount necessary for misuse detection. Also, it limits the recovery of personal data to pseudonyms involved in a detected misuse scenario. The book includes case studies demonstrating this theory, and solutions that are constructively validated by providing algorithms.
Includes broad systematic introduction into the problem — from legal framework to developing requirements and general models with technical solutions for multilateral security Demonstrates how solutions can be designed and evaluated while rigorously adhering to derived requirements Includes supplementary material: sn.pub/extras
Autor*in
Ulrich Flegel
Themen in »Privacy-Respecting Intrusion Detection«
Datenschutz IT security Information Protection Signatur UNIX algorithms architecture computer security informational self-determination intrusion detection monitoring network security security surveillance