Design and Evaluation of a Grid Computing Based Architecture for Integrating Heterogeneous IDSs

Intrusion detection systems (IDSs) have been substantially improved in recent past. However, network attacks have become more sophisticated and increasingly complex: many of current attacks are coordinated and originated in multiple networks. To detect these attacks, IDSs need to obtain information...

Full description

Saved in:
Bibliographic Details
Published inIEEE GLOBECOM 2007 - IEEE Global Telecommunications Conference pp. 338 - 342
Main Authors Silva, P.F., Westphall, C.B., Westphall, C.M., de Assuncao, M.D.
Format Conference Proceeding
LanguageEnglish
Published IEEE 01.11.2007
Subjects
Computer architecture
Computer network management
Computer science
Electronic mail
Engineering management
Grid computing
Intrusion detection
Laboratories
Middleware
Resource management
Online AccessGet full text

Cover

More Information
Summary:Intrusion detection systems (IDSs) have been substantially improved in recent past. However, network attacks have become more sophisticated and increasingly complex: many of current attacks are coordinated and originated in multiple networks. To detect these attacks, IDSs need to obtain information on network events from multiple networks or administrative domains. This work demonstrates that a Distributed IDS (DIDS) can be composed of existing IDSs, improving the detection of misuses in a multiple network environment. We use a grid middleware for creating a service-based intrusion detection grid. We demonstrate through experimental results that the proposed DIDS allows the integration of heterogeneous existing IDSs and improves the detection of attacks by exploring the synergy between existing IDSs.
ISBN:1424410428
9781424410422
ISSN:1930-529X
2576-764X
DOI:10.1109/GLOCOM.2007.70