Recent Advances in Intrusion Detection

5th International Symposium, RAID 2002 Zurich, Switzerland, October 16–18, 2002 Proceedings

  • Andreas Wespi
  • Giovanni Vigna
  • Luca Deri
Conference proceedings RAID 2002

Part of the Lecture Notes in Computer Science book series (LNCS, volume 2516)

Table of contents

  1. Front Matter
    Pages I-X
  2. Stepping Stone Detection

    1. David L. Donoho, Ana Georgina Flesia, Umesh Shankar, Vern Paxson, Jason Coit, Stuart Staniford
      Pages 17-35
    2. Frank Apap, Andrew Honig, Shlomo Hershkop, Eleazar Eskin, Sal Stolfo
      Pages 36-53
  3. Anomaly Detection

    1. Kymie M. C. Tan, Kevin S. Killourhy, Roy A. Maxion
      Pages 54-73
  4. Correlation

    1. Peng Ning, Yun Cui, Douglas S. Reeves
      Pages 74-94
    2. Phillip A. Porras, Martin W. Fong, Alfonso Valdes
      Pages 95-114
    3. Benjamin Morin, Ludovic Mé, Hervé Debar, Mireille Ducassé
      Pages 115-137
  5. Legal Aspects / Intrusion Tolerance

    1. James E. Just, James C. Reynolds, Larry A. Clough, Melissa Danforth, Karl N. Levitt, Ryan Maglich et al.
      Pages 158-176
  6. Assessment of Intrusion Detection Systems

  7. Adaptive Intrusion Detection Systems

    1. Wenke Lee, João B. D. Cabrera, Ashley Thomas, Niranjan Balwalli, Sunmeet Saluja, Yi Zhang
      Pages 252-273
  8. Intrusion Detection Analysis

    1. Thomas Toth, Christopher Kruegel
      Pages 274-291
    2. Jacob Zimmermann, Ludovic Mé, Christophe Bidan
      Pages 292-306
  9. Back Matter
    Pages 327-327

About these proceedings


On behalf of the program committee, it is our pleasure to present to you the proceedings of the Fifth Symposium on Recent Advances in Intrusion Detection (RAID). Since its ?rst edition in 1998, RAID has established itself as the main annual intrusion detection event, attracting researchers, practitioners, and v- dors from all over the world. The RAID 2002 program committee received 81 submissions (64 full papers and 17 extended abstracts) from 20 countries. This is about 50% more than last year. All submissions were carefully reviewed by at least three program comm- tee members or additional intrusion-detection experts according to the criteria ofscienti?cnovelty,importancetothe?eld,andtechnicalquality.Finalselection took place at a meeting held on May 15–16, 2002, in Oakland, USA. Sixteen full papers were selected for presentation and publication in the conference proc- dings. In addition, three extended abstracts of work in progress were selected for presentation. The program included both fundamental research and practical issues. The seven sessions were devoted to the following topics: anomaly detection, steppi- stonedetection,correlationofintrusion-detectionalarms,assessmentofintrusi- detectionsystems,intrusiontolerance,legalaspects,adaptiveintrusion-detection systems, and intrusion-detection analysis. RAID 2002 also hosted a panel on “Cybercrime,” a topic of major concern for both security experts and the public. Marcus J. Ranum, the founder of Network Flight Recorder, Inc., delivered a keynote speech entitled “Challenges for the Future of Intrusion Detection”.


Anomaly Detection Audit Control Authentication Cryptanalysis Distributed Intrusion Intrusion Detection Intrusion Detection Systems Monitor Performance Privacy RAID Registry Security Session Windows

Editors and affiliations

  • Andreas Wespi
    • 1
  • Giovanni Vigna
    • 2
  • Luca Deri
    • 3
  1. 1.IBM Zurich Research LaboratoryRüschlikonSwitzerland
  2. 2.Department of Computer ScienceUniversity of California at Santa BarbaraSanta BarbaraUSA
  3. 3.Centro SerraUniversity of PisaPisaItaly

Bibliographic information

  • DOI
  • Copyright Information Springer-Verlag Berlin Heidelberg 2002
  • Publisher Name Springer, Berlin, Heidelberg
  • eBook Packages Springer Book Archive
  • Print ISBN 978-3-540-00020-4
  • Online ISBN 978-3-540-36084-1
  • Series Print ISSN 0302-9743
  • Buy this book on publisher's site