论文信息 - Assessing the Uncertainty of Communication Patterns in Distributed Intrusion Detection System

Assessing the Uncertainty of Communication Patterns in Distributed Intrusion Detection System

A paper proposes a formal framework for communication patterns’ uncertainty assessment within a distributed multiagent IDS architecture. The role of the detection of communication anomalies in IDS is discussed then it is shown how sequences of detectable patterns like fan-in, fan-out values for given network node and clustering coefficients can be used to detect network anomalies caused by security incidents (worm attack, virus spreading). It is defined how to use the proposed techniques in distributed IDS and backtrack the incidents.

Grzegorz Kolaczek | Krzysztof Juszczyszyn | G. Kolaczek | K. Juszczyszyn

[1] Jason Lee,et al. A first look at modern enterprise traffic , 2005, IMC '05.

[2] David M. Nicol,et al. Multiscale Modeling and Simulation of Worm Effects on the Internet Routing Infrastructure , 2003, Computer Performance Evaluation / TOOLS.

[3] Ngoc Thanh Nguyen,et al. A Mobile Agent Approach to Intrusion Detection in Network Systems , 2005, KES.

[4] Vladimir Gorodetsky,et al. MULTI-AGENT MODELING AND SIMULATION OF DISTRIBUTED DENIAL-OF-SERVICE ATTACKS ON COMPUTER NETWORKS , 2003 .

[5] Audun Jøsang,et al. A Logic for Uncertain Probabilities , 2001, Int. J. Uncertain. Fuzziness Knowl. Based Syst..

[6] Victor A. Skormin,et al. Agent-Based Model of Computer Network Security System: A Case Study , 2001, MMM-ACNS.

[7] Michalis Faloutsos,et al. On power-law relationships of the Internet topology , 1999, SIGCOMM '99.

[8] Ngoc Thanh Nguyen,et al. Agent-Based Approach for Distributed Intrusion Detection System Design , 2006, International Conference on Computational Science.

[9] Svein J. Knapskog,et al. A metric for trusted systems , 1998 .

[10] Eddie Kohler,et al. Observed structure of addresses in IP traffic , 2006, TNET.

[11] P. Oscar Boykin,et al. Personal Email Networks: An Effective Anti-Spam Tool , 2004, ArXiv.

[12] P. Oscar Boykin,et al. Leveraging social networks to fight spam , 2005, Computer.