IDIOT (Intrusion Detection In Our Time)
Definition: A project to develop a new approach to efficient misuse detection methods. This work was started by Sandeep Kumar, who recently completed his Ph.D. He designed a new method of employing complex pattern matching to intrusion signatures.
His design made use of a new classification of intrusion methods based on complexity of matching and temporal characteristics. He also designed a generic matching engine based on colored Petri nets.
Several of the COAST students worked to expand the pattern database for IDIOT, and to enhance its portability. A version is now available for general release under a no-cost license.