Title: Intrusion Detection
Author: Gregor Schafrath
e-mail: schaffrath@ifi.uzh.ch
Partner: UniZH
Supervisor: Prof. Dr. Burkhard Stiller
Committee: Prof. Dr. Burkhard Stiller, NN
Year of start: 2006
Year of end: 2009
Funding institution: University of Zurich, IFI

Network based Intrusion Detection Systems (NIDS) aim at the detection of malicious activities by inspection of network activities. As network link speeds continued to grow and applications became more diverse, payload based inspection became more and more difficult and concepts are being developed to operate on flow level. However, as both approaches have their weaknesses, enabling them to find different classes of attacks with different levels of confidence, they should be regarded as complementary to each other. This doctoral project aims at the systematic analysis of these shortcomings and the development of concepts on how to combine them for best synergetic effects.