Design and Implementation of a High-Performance Active Network Security System

—This paper describes the design, implementation and performance of a high-performance security system-Active Network Security Immune System (ANSIS) –based on active network. ANSIS is a compatible, scalable and practical network framework. It uses distributed security services to solve various security problems. The detective technique implemented in ANSIS can handle any type of DoS attacks, including novel worm spreading. Moreover, ANSIS not only improve the security of network system substantially, but also reduce the management and maintenance cost by a wide margin.

[1]  Hilarie K. Orman,et al.  Activating Networks: A Progress Report , 1999, Computer.

[2]  David Wetherall,et al.  Experiences with capsule-based active networking , 2002, Proceedings DARPA Active Networks Conference and Exposition.

[3]  Angelos D. Keromytis,et al.  Active network encapsulation protocol (anep) , 1997 .

[4]  D. Endler,et al.  Intrusion detection. Applying machine learning to Solaris audit data , 1998, Proceedings 14th Annual Computer Security Applications Conference (Cat. No.98EX217).

[5]  Kenneth L. Calvert,et al.  Directions in active networks , 1998 .

[6]  David Wetherall,et al.  Towards an active network architecture , 1996, CCRV.

[7]  David L. Tennenhouse,et al.  Toward an active network architecture , 1996, Electronic Imaging.

[8]  John V. Guttag,et al.  ANTS: a toolkit for building and dynamically deploying network protocols , 1998, 1998 IEEE Open Architectures and Network Programming.

[9]  David L. Tennenhouse,et al.  The ACTIVE IP option , 1996, EW 7.

[10]  Julie A. Dickerson,et al.  Fuzzy network profiling for intrusion detection , 2000, PeachFuzz 2000. 19th International Conference of the North American Fuzzy Information Processing Society - NAFIPS (Cat. No.00TH8500).

[11]  Stuart Staniford,et al.  Viewing IDS alerts: lessons from SnortSnarf , 2001, Proceedings DARPA Information Survivability Conference and Exposition II. DISCEX'01.

[12]  R. D. Rockwell,et al.  Smart Packets for active networks , 1999, 1999 IEEE Second Conference on Open Architectures and Network Programming. Proceedings. OPENARCH '99 (Cat. No.99EX252).

[13]  Yechiam Yemini,et al.  The NetScript active network system , 2001, IEEE J. Sel. Areas Commun..

[14]  Susan C. Lee,et al.  Training a neural-network based intrusion detector to recognize novel attacks , 2001, IEEE Trans. Syst. Man Cybern. Part A.

[15]  S. C. Lee,et al.  Building a true anomaly detector for intrusion detection , 2000, MILCOM 2000 Proceedings. 21st Century Military Communications. Architectures and Technologies for Information Superiority (Cat. No.00CH37155).

[16]  G.J. Minden,et al.  A survey of active network research , 1997, IEEE Communications Magazine.