Home pageSoftwaresDevelopments
PIGA-IDS : Policy-Based Intrusion Detection System
Monday 11 June 2007
by Jérémy Briffaut

PIGA, for Policy Based Intrusion Detection System, is the implementation of our intrusion detection model.

This IDS generates an interaction graph corresponding to the local policy. This graph is analyzed in order to compute the set of forbidden sequence of interaction by applying a set of detection rules. Next, for each interaction an audit bit is added in the local policy in order to generate traces. Finally, these traces are analyzed and alarms are generated when a forbidden sequence is detected.

PIGA is actually developed in Java and uses SELinux or Grsecurity policy. It allows to detect several security property violations.

This section's articles
  1. PIGA-IDS : Policy-Based Intrusion Detection System
    11 June 2007

  2. MIDS : Multi-Level and Multi-Agent Intrusion Detection System
    11 June 2007

  3. IDS-Correlation
    11 June 2007

  4. Security Policy Visualization Tool
    11 June 2007

  5. Secured Remote Virtual Desktop
    11 June 2007

©2005-2006 SARKA-SPIP | All rights reserved
SPIP 1.9.2c |  Sarka-SPIP 1.2.1 ::  Sylvain Bellégo ::  GPL