Intrusion Detection With Mondrian and Snort

This book proposes to show the added value of OLAP
techniques for IDS event analysis. It will discuss
the currently available tools that are used together
with the IDS Snort to build a strong security system.
This will help the reader to understand what an IDS
is and what tools can help in analyzing IDS events.

The book will also cover the topic of OLAP and the
features that are important when developing an OLAP
based analysis system. Finally, the book will show
the reader how to build a cube with open source
tools. The steps taken to install Snort are discussed
including the interconnection with programs such as
MySQL for the collection of alerts . It explains some
of the most interesting possibilities for analyzing
data and evaluates the most popular open source
reporting tools for Snort.
To conclude it will show the result of building a
cube with Mondrian and the possibilities for
analyzing the data with a web-based front end using
JPivot.

Autorentext

1999-2003: INFORMATION MANAGEMENT at University of Applied Science2006-2008: ADVANCED SECURITY ENGINEERING at University of AppliedScience.After more than 7 years of experience in my profession I foundeda consulting company together with Mr. Raffer.Characterized by a great interest in designing and developinginformation management systems.

Klappentext

This book proposes to show the added value of OLAPtechniques for IDS event analysis. It will discussthe currently available tools that are used togetherwith the IDS Snort to build a strong security system.This will help the reader to understand what an IDSis and what tools can help in analyzing IDS events.The book will also cover the topic of OLAP and thefeatures that are important when developing an OLAPbased analysis system. Finally, the book will showthe reader how to build a cube with open sourcetools. The steps taken to install Snort are discussedincluding the interconnection with programs such asMySQL for the collection of alerts . It explains someof the most interesting possibilities for analyzingdata and evaluates the most popular open sourcereporting tools for Snort.To conclude it will show the result of building acube with Mondrian and the possibilities foranalyzing the data with a web-based front end usingJPivot.