Privacy-Respecting Intrusion Detection

  • Ulrich Flegel

Part of the Advances in Information Security book series (ADIS, volume 35)

Table of contents

  1. Front Matter
    Pages I-XVIII
  2. Introduction and Background

  3. Set-based Approach

  4. Application to Unix Audit Data

    1. Front Matter
      Pages 136-136
    2. Pages 137-140
    3. Pages 141-145
  5. Evaluation

  6. Refinement of Misuse Scenario Models

    1. Front Matter
      Pages 198-198
    2. Pages 233-245
    3. Pages 247-282
  7. Back Matter
    Pages 283-307

About this book


With our society's growing dependency on information technology systems (IT), IT security is crucial. To properly respond to misuse or abusive activity in IT systems, one needs to establish the capability to detect and understand improper activity. Intrusion Detection Systems observe activity occurring in the IT system, record these observations in audit data, and analyze collected audit data to detect misuse. Collecting and processing audit data for misuse detection conflicts with expectations and rights of system users regarding their privacy. A viable solution is replacing personal data with pseudonyms in audit data.

Privacy-Respecting Intrusion Detection introduces technical purpose binding, restricting the linkability of pseudonyms in audit data, to the amount required for misuse detection. Also, it limits the recovery of original personal data to pseudonyms involved in a detected misuse scenario. This book includes case studies with constructively validated solutions by providing algorithms.

Privacy-Respecting Intrusion Detection is designed for a professional audience, composed of practitioners and researchers in industry. This book is also suitable as an advance-level text in the computer science field.

Foreword by Richard Kemmerer, University of California, Santa Barbara, USA



Datenschutz IT security Information Protection Signatur UNIX algorithms architecture computer security informational self-determination intrusion detection monitoring network security security surveillance

Authors and affiliations

  • Ulrich Flegel
    • 1
  1. 1.University of Dortmund44221Germany

Bibliographic information

  • DOI
  • Copyright Information Springer Science+Business Media, LLC 2007
  • Publisher Name Springer, Boston, MA
  • eBook Packages Computer Science
  • Print ISBN 978-0-387-34346-4
  • Online ISBN 978-0-387-68254-9
  • Series Print ISSN 1568-2633
  • Buy this book on publisher's site