Design and Evaluation of a Grid Computing Based Architecture for Integrating Heterogeneous IDSs
Intrusion detection systems (IDSs) have been substantially improved in recent past. However, network attacks have become more sophisticated and increasingly complex: many of current attacks are coordinated and originated in multiple networks. To detect these attacks, IDSs need to obtain information...
Saved in:
Published in | IEEE GLOBECOM 2007 - IEEE Global Telecommunications Conference pp. 338 - 342 |
---|---|
Main Authors | , , , |
Format | Conference Proceeding |
Language | English |
Published |
IEEE
01.11.2007
|
Subjects | |
Online Access | Get full text |
Cover
Loading…
Summary: | Intrusion detection systems (IDSs) have been substantially improved in recent past. However, network attacks have become more sophisticated and increasingly complex: many of current attacks are coordinated and originated in multiple networks. To detect these attacks, IDSs need to obtain information on network events from multiple networks or administrative domains. This work demonstrates that a Distributed IDS (DIDS) can be composed of existing IDSs, improving the detection of misuses in a multiple network environment. We use a grid middleware for creating a service-based intrusion detection grid. We demonstrate through experimental results that the proposed DIDS allows the integration of heterogeneous existing IDSs and improves the detection of attacks by exploring the synergy between existing IDSs. |
---|---|
ISBN: | 1424410428 9781424410422 |
ISSN: | 1930-529X 2576-764X |
DOI: | 10.1109/GLOCOM.2007.70 |