Security Enhancement in Distributed Networks Using Link-Based Mapping Scheme for Network Intrusion Detection with Enhanced Bloom Filter

To prevent and monitor the unauthorized usage of data access, security on the network is implemented by authenticating the data. Network intrusion detection system monitors the network traffic and measures the information to identify the suspicious activities. In distributed networks, the network administrator has to authorize the user data access. When large data set is concerned in network applications the two complex issues to be solved are the organization of information and decision making. To address these issues, a space efficient data structure, called the bloom filter is used which effectively organizes and decides the presence of reliability. However, using advanced filtering techniques, the intruders easily hack the authorized data for unauthorized operations. At the same time, when processing the information, it is difficult to access the data in a secured manner using the standard bloom filters. To enhance the security over the user data access from the intruders, an enhanced bloom filter technique is presented to represent the large set of data in secure manner applied in distributed applications like web caching, peer networks etc. Additionally, to restrict the unauthorized access over the dataset from malicious activities by intruders, the enhanced bloom filter is applied with an upper bound on the false-positive probability by increasing its capacity as the packet data size increases. The occurrence of network data traffic is cleared by mapping the set of data elements to the appropriate setting in the database using hash functions, minimizing the number of resets created and at the same time improving the mean hit ratio. An experimental evaluation is done with the KDD cup 1999 dataset extracted from UCI repository to estimate the performance of the proposed link-based mapping for network intrusion detection system with enhanced bloom filters. Performance evaluation is measured in terms of false positive probability, false negative probability, mean hit ratio, scalability, number of resets created and security. The experimental results reveals that security over the packet data achieves 42.5 % higher against existing dynamic bloom filter approach.

[1]  Michael Mitzenmacher,et al.  Compressed bloom filters , 2002, TNET.

[2]  Taskin Koçak,et al.  Low-power bloom filter architecture for deep packet inspection , 2006, IEEE Communications Letters.

[3]  Taskin Koçak,et al.  Fully pipelined bloom filter architecture , 2008, IEEE Communications Letters.

[4]  Larry Carter,et al.  Universal Classes of Hash Functions , 1979, J. Comput. Syst. Sci..

[5]  Otto Carlos Muniz Bandeira Duarte,et al.  Capacity and Robustness Tradeoffs in Bloom Filters for Distributed Applications , 2012, IEEE Transactions on Parallel and Distributed Systems.

[6]  Dan Feng,et al.  Locality-Sensitive Bloom Filter for Approximate Membership Query , 2012, IEEE Transactions on Computers.

[7]  Otto Carlos Muniz Bandeira Duarte,et al.  A Generalized Bloom Filter to Secure Distributed Network Applications , 2011, Comput. Networks.

[8]  Tuomas Aura,et al.  Denial-of-Service Attacks in Bloom-Filter-Based Forwarding , 2014, IEEE/ACM Transactions on Networking.

[9]  Ayman I. Kayssi,et al.  SinPack: A Security Protocol for Preventing Pollution Attacks in Network-Coded Content Distribution Networks , 2010, 2010 IEEE Global Telecommunications Conference GLOBECOM 2010.

[10]  Isaac Keslassy,et al.  The Variable-Increment Counting Bloom Filter , 2012, IEEE/ACM Transactions on Networking.

[11]  Sajal K. Das,et al.  An Architectural Framework for Accurate Characterization of Network Traffic , 2009, IEEE Transactions on Parallel and Distributed Systems.

[12]  Dafang Zhang,et al.  Basket Bloom Filters for Membership Queries , 2005, TENCON 2005 - 2005 IEEE Region 10 Conference.

[13]  Jie Wu,et al.  The Dynamic Bloom Filters , 2010, IEEE Transactions on Knowledge and Data Engineering.

[14]  Yun-Zhao Li Memory Efficient Parallel Bloom Filters for String Matching , 2009, 2009 International Conference on Networks Security, Wireless Communications and Trusted Computing.

[15]  MyungKeun Yoon,et al.  Aging Bloom Filter with Two Active Buffers for Dynamic Sets , 2010, IEEE Transactions on Knowledge and Data Engineering.

[16]  K. Saravanan,et al.  FPGA implementation of Secure Authentication in WiMAX Networks using Modified WiMAX Bloom filter: A Hardware Approach , 2013 .

[17]  Yossi Matias,et al.  Spectral bloom filters , 2003, SIGMOD '03.

[18]  Burton H. Bloom,et al.  Space/time trade-offs in hash coding with allowable errors , 1970, CACM.

[19]  Ding Yi A Novel Call Admission Control Routing Mechanism Using Bloom Filter in MANET , 2009, 2009 International Conference on Networks Security, Wireless Communications and Trusted Computing.

[20]  Michael Mitzenmacher,et al.  Distance-Sensitive Bloom Filters , 2006, ALENEX.

[21]  John W. Lockwood,et al.  Deep packet inspection using parallel bloom filters , 2004, IEEE Micro.