- 23 marzo, venerdì - orario: 10:00-12:00
Introduction to intrusion detection: Taxonomy: net/host. Host IDS: early approaches. Network IDS: feature extraction. Signature-based IDS.
- 26 marzo, lunedì - orario: 15:00-17:00
Anomaly detection for network security: Early approaches (packet headers, PAYL, Anagram). Payload based approach. Applications (ReMIND experiments, SCADA systems)
- 28 marzo, orario, mercoledì - 15:00-17:00
Classification for network security. Early approaches. Why it is difficult to use classification for IDS. Behavioral classification. Automatic signature generation.
- 30 marzo, venerdì - orario: 10:00-12:00
Attacks against learning algorithms. Attack taxomony. Attacks against anagram. Attacks against automatic signature generation.