Design and Evaluation of a Grid Computing Based Architecture for Integrating Heterogeneous IDSs

Author

Silva, Paulo F. ; Westphall, Carlos B. ; Westphall, Carla M. ; De Assunção, Marcos Dias

Author_Institution

Fed. Univ. of Santa Catarina, Florianopolis

fYear

2007

fDate

26-30 Nov. 2007

Firstpage

338

Lastpage

342

Abstract

Intrusion detection systems (IDSs) have been substantially improved in recent past. However, network attacks have become more sophisticated and increasingly complex: many of current attacks are coordinated and originated in multiple networks. To detect these attacks, IDSs need to obtain information on network events from multiple networks or administrative domains. This work demonstrates that a Distributed IDS (DIDS) can be composed of existing IDSs, improving the detection of misuses in a multiple network environment. We use a grid middleware for creating a service-based intrusion detection grid. We demonstrate through experimental results that the proposed DIDS allows the integration of heterogeneous existing IDSs and improves the detection of attacks by exploring the synergy between existing IDSs.

Keywords

grid computing; middleware; security of data; IDS; grid computing based architecture; grid middleware; intrusion detection system; service-based intrusion detection grid; Computer architecture; Computer network management; Computer science; Electronic mail; Engineering management; Grid computing; Intrusion detection; Laboratories; Middleware; Resource management;

fLanguage

English

Publisher

ieee

Conference_Titel

Global Telecommunications Conference, 2007. GLOBECOM '07. IEEE

Conference_Location

Washington, DC

Print_ISBN

978-1-4244-1042-2

Electronic_ISBN

978-1-4244-1043-9

Type

conf

DOI

10.1109/GLOCOM.2007.70

Filename

4410980