SRI Logo
About Us|R and D Divisions|Careers|Newsroom|Contact Us|SRI Home
  SRI Logo

Experience with EMERALD to Date
 by Dr. Peter Neumann & Phillip Porras.

From First USENIX Workshop on Intrusion Detection and Network Monitoring.
Santa Clara, California.
April, 1999.
Pages 73–80.

After summarizing the EMERALD architecture and the evolutionary process from which EMERALD has evolved, this paper focuses on our experience to date in designing, implementing, and applying EMERALD to various types of anomalies and misuse. The discussion addresses the fundamental importance of good software engineering practice and the importance of the system architecture -- in attaining detectability, interoperability, general applicability, and future evolvability. It also considers the importance of correlation among distributed and hierarchical instances of EMERALD, and needs for additional detection and analysis components.
BibTEX Entry
    AUTHOR = {Peter {G.} Neumann and Phillip {A.} Porras},
    TITLE = {Experience with {EMERALD} to Date},
    BOOKTITLE = {First {USENIX} Workshop on Intrusion Detection and Network Monitoring},
    YEAR = {1999},
    PAGES = {73-80},
    ADDRESS = {Santa Clara, California},
    MONTH = {apr},
    URL = {}


About Us  |  R&D Divisions  |  Careers  |  Newsroom  |  Contact Us
© 2024 SRI International 333 Ravenswood Avenue, Menlo Park, CA 94025-3493
SRI International is an independent, nonprofit corporation. Privacy policy