Abstract

Interval temporal logic (ITL) model checking reduces the false negative rate of misuse detection for concurrent attacks. However, no ITL formula can be used to describe the time constraints between various actions in the same attack. To this end, we use a timed interval temporal logic (TITL) formula to describe such constraints as well as the absolute time of atomic steps in an attack. On this basis, we give an approach for intrusion detection based on TITL model checking. Compared with the existing misuse detection method based on model checking, the new method can find real-time attacks.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.