| Global Analysis of Drive File Times |
May 2010 |
13 pages |
| Authors:
Neil C Rowe; Simon L Garfinkel; NAVAL POSTGRADUATE SCHOOL MONTEREY CA
|
 | Global analysis is a useful supplement to local forensic analysis of the details of files in a drive image. This paper reports on experiments with global methods to find time patterns associated with disks and files. The Real Disk Corpus of over 1000 drive images from eight countries was used as a corpus. The data was clustered into 63 subsets based on file and directory type, and times were analyzed ... |
|
| Automated Instantaneous Performance Assessment for Marine-Squad Urban-Terrain Training |
Jun-2009 |
48 pages |
| Authors:
Neil C Rowe; NAVAL POSTGRADUATE SCHOOL MONTEREY CA
|
| Urban operations (MOUT) are a key component of U.S. Marine training, yet assessment of performance during the later and more integrative training exercises is difficult because events happen quickly and walls impede full view. We are building a performance assessment system called BASE-IT that will collect data on positions, orientations, postures, and activities of Marines during training using a network of cameras. BASE-IT will automatically summarize performance over exercises and ... |
|
| Wireless Sensor Networks for Detection of IED Emplacement |
Jun-2009 |
40 pages |
| Authors:
Gurminder Singh; Neil C Rowe; Matthew O'Hara; NAVAL POSTGRADUATE SCHOOL MONTEREY CA
|
| We are investigating the use of wireless nonimaging-sensor networks for the difficult problem of detection of suspicious behavior related to IED emplacement. Hardware for surveillance by nonimaging-sensor networks can cheaper than that for visual surveillance, can require much less computational effort by virtue of simpler algorithms, and can avoid problems of occlusion of view that occur with imaging sensors. We report on four parts of our investigation. First, we discuss ... |
|
| Automatically Tracing Information Flow of Vulnerability and Cyber-Attack Information through Text Strings |
01-Jun-2008 |
44 pages |
| Authors:
Neil C Rowe; Eric Sjoberg; Paige Adams; NAVAL POSTGRADUATE SCHOOL MONTEREY CA
|
| Quick dissemination of information about new vulnerabilities and attacks is essential to time-critical handling of threats in information security, but little systematic tracking has been done of it. We are developing data mining techniques to track the flow of such information by comparing important information-security Web sites, alert messages, and strings in packets to find similar words and sentences. We report on tools we have developed to collect relevant sentences, ... |
|
| Assessment of Electromagnetic and Passive Diffuse Infrared Sensors in Detection of IED-Related Behavior |
01-Jun-2008 |
40 pages |
| Authors:
Joshua Sundram; Gurminder Singh; Neil C Rowe; Phua Poh Sim; NAVAL POSTGRADUATE SCHOOL MONTEREY CA
|
| Persistent wireless sensor networks can be a cost-effective way to monitor public areas for suspicious behavior and reduce the need for military patrols. We examine here their applicability to the difficult problem of detecting emplacement of improvised explosive devices (IEDs). We first discuss the threat and how wireless sensor networks could help fight it; flexible and adaptable management of the sensor network is essential. We then report some experiments with ... |
|
| Multi-Agent Simulation of Human Behavior in Naval Air Defense |
Oct 2004 |
17 pages |
| Authors:
Sharif H Calfee; Neil C Rowe; NAVAL POSTGRADUATE SCHOOL MONTEREY CA DEPT OF COMPUTER SCIENCE
|
| The AEGIS Cruiser Air-Defense Simulation Program models the operations of a combat information center team performing air defense for a U.S. Navy cruiser. It uses multi-agent system technology and is implemented in Java. Conceived primarily to assist personnel in air defense training and doctrine formulation, the simulation provides insight into the factors (skills, experience, fatigue, aircraft numbers, weather, etc.) that influence performance, especially under intense or stressful situations, and the ... |
|
| Software Decoys: Intrusion Detection and Countermeasures |
01-Jun-2002 |
9 pages |
| Authors:
James B Michael; Mikhail Auguston; Neil C Rowe; Richard D Riehle; NAVAL POSTGRADUATE SCHOOL MONTEREY CA DEPT OF COMPUTER SCIENCE
|
| We introduce the notion of an intelligent software decoy, and provide both an architecture and event-based language for automatic implementation of them. Our decoys detect and respond to patterns of suspicious behavior, and maintain a repository of rules for behavior patterns and decoying actions. As an example, we construct a model of system behavior from an initial list of event types and their attributes in the interaction between computer worms ... |
|
| An Intelligent Tutor for Intrusion Detection on Computer Systems |
Jan 1998 |
9 pages |
| Authors:
Neil C Rowe; Sandra Schiavo; NAVAL POSTGRADUATE SCHOOL MONTEREY CA DEPT OF COMPUTER SCIENCE
|
| Intrusion detection is the process of identifying unauthorized usage of a computer system. It an important skill for computer-system administrators. It is difficult to learn on the job because it is needed only occasionally but can be critical. We describe a tutor incorporating two programs. The first program uses artificial-intelligence planning methods to generate realistic audit files reporting actions of a variety of simulated users (including intruders) of a Unix ... |
|
| A Distributed Autonomous-Agent Network-Intrusion Detection and Response System |
Jan 1998 |
13 pages |
| Authors:
Joseph Barrus; Neil C Rowe; NAVAL POSTGRADUATE SCHOOL MONTEREY CA
|
| We propose a distributed architecture with autonomous agents to monitor security-related activity within a network. Each agent operates cooperatively yet independently of the others, providing for efficiency, real-time response and distribution of resources. This architecture provides significant advantages in scalability, flexibility, extensibility, fault tolerance, and resistance to compromise. We also propose a scheme of escalating levels of alertness, and a way to notify other agents on other computers in a ... |
|
Reports by Author
