论文信息 - Collaboration between Security Devices toward improving Network Defense

Collaboration between Security Devices toward improving Network Defense

Internet technologies have been applied to many areas such as tax payments, electronic auctions, electronic commerce, electronic voting; so it is very important to protect these applications and network devices from data tapped or counterfeited by malicious attackers. To guard against these malicious attacks, different network security devices are designed, such as firewalls, intrusion detection and prevention systems, vulnerability scanner, honeypot and so on. However, all these security devices can not guarantee computer systems protection because each one is implemented as a stand-alone system for solving a particular security problem and it is not designed to communicate with the others. The focus of this work is encompassing a security infrastructure where multiple security devices form a global security layer. Each component is defined with respect to the others and interacts dynamically and automatically with the different security devices.

M. Sourour | B. Adel | A. Tarek

[1] Hassan Artail,et al. A hybrid honeypot framework for improving intrusion detection systems in protecting organizational networks , 2006, Comput. Secur..

[2] Yong Tang,et al. HonIDS: enhancing honeypot system with intrusion detection models , 2006, Fourth IEEE International Workshop on Information Assurance (IWIA'06).

[3] Y. V. Ramana Reddy,et al. TRINETR: An architecture for collaborative intrusion detection and knowledge-based alert evaluation , 2005, Adv. Eng. Informatics.

[4] Yeu-Pong Lai,et al. Using the vulnerability information of computer systems to improve the network security , 2007, Comput. Commun..

[5] Tadeusz Pietraszek,et al. Data mining and machine learning - Towards reducing false positives in intrusion detection , 2005, Inf. Secur. Tech. Rep..

[6] A. Tarek,et al. A Stateful Real Time Intrusion Detection System for high-speed network , 2007, 21st International Conference on Advanced Information Networking and Applications (AINA '07).