DocumentCode
1952036
Title
Intrusion Detection and tolerance in Grid-based applications
Author
Wang, Jun ; Iacono, Luigi LO
Author_Institution
C&C Research Laboratories, NEC Europe Ltd., Sankt Augustin, Germany
fYear
2007
fDate
17-21 Sept. 2007
Firstpage
177
Lastpage
185
Abstract
With the increasing use of Grid-based applications, especially in business-driven scenarios, new types of cross-domain attacks which initiate from one site and then easily spread to other federated sites are expected to appear and become serious threats. In this paper, the need for dedicated Grid Intrusion Detection Systems (Grid-IDS) is motivated by giving such an example attack on a federated service protocol. A generic Grid-IDS architecture is presented as well as a concrete realization based on various Web services specifications. At the heart of the introduced Grid-IDS architecture is the correlation service, which receives the event information from sensors distributed across the federation and detects intrusions by analyzing and correlating the events. A protocol-aware correlation service is proposed, in which each service protocol is abstracted to a generic representation - a relationship of roles. Finally, based on the developed Grid-IDS and the gathered experiences, an approach towards intrusion tolerance is presented and discussed.
Keywords
Access protocols; Authentication; Authorization; Banking; Europe; Event detection; Intrusion detection; Laboratories; National electric code; Service oriented architecture; Grid; Intrusion Detection; Intrusion Tolerance; SOA;
fLanguage
English
Publisher
ieee
Conference_Titel
Security and Privacy in Communications Networks and the Workshops, 2007. SecureComm 2007. Third International Conference on
Conference_Location
Nice, France
Print_ISBN
978-1-4244-0974-7
Electronic_ISBN
978-1-4244-0975-4
Type
conf
DOI
10.1109/SECCOM.2007.4550328
Filename
4550328
Link To Document