Show simple item record

dc.contributor.advisorRowe, Keith
dc.contributor.advisorFulp, J. D.
dc.contributor.authorLabbe, Keith G.
dc.date.accessioned2012-03-14T17:33:37Z
dc.date.available2012-03-14T17:33:37Z
dc.date.issued2005-06
dc.identifier.urihttp://hdl.handle.net/10945/1942
dc.description.abstractHost-based intrusion-prevention systems are recently popular technologies which protect computer systems from malicious attacks. Instead of merely detecting exploits, the systems attempt to prevent the exploits from succeeding on the host they protect. This research explores the threats that have led to the development of these systems and the techniques many use to counter those problems. We then evaluate two current intrusion-prevention products (McAfee Entercept and the Cisco Security Agent) as to their success in preventing exploits. Our tests used live viruses, worms, Trojan horses, and remote exploits which were turned loose on an isolated two-computer network. We make recommendations about deployment of the two products based on the results of our own testing.en_US
dc.description.urihttp://archive.org/details/evaluationoftwoh109451942
dc.format.extentxiv, 55 p. : ill. ;en_US
dc.publisherMonterey, California. Naval Postgraduate Schoolen_US
dc.subject.lcshComputer securityen_US
dc.subject.lcshComputer networksen_US
dc.subject.lcshSecurity measuresen_US
dc.subject.lcshSecurity systemsen_US
dc.titleEvaluation of two host-based intrusion prevention systemsen_US
dc.typeThesisen_US
dc.contributor.corporateNaval Postgraduate School (U.S.)
dc.identifier.oclc62174142
etd.thesisdegree.nameM.S.en_US
etd.thesisdegree.levelMastersen_US
etd.thesisdegree.disciplineComputer Scienceen_US
etd.thesisdegree.grantorNaval Postgraduate Schoolen_US
etd.verifiednoen_US
dc.description.distributionstatementApproved for public release; distribution is unlimited.


Files in this item

Thumbnail

This item appears in the following Collection(s)

Show simple item record