• DocumentCode
    3115217
  • Title

    Distributed detection of network intrusions based on a parametric model

  • Author

    Wang, Yan-guo ; Li, Xi ; Hu, Weiming

  • Author_Institution
    Nat. Lab. of Pattern Recognition, Chinese Acad. of Sci., Beijing
  • fYear
    2008
  • fDate
    12-15 Oct. 2008
  • Firstpage
    2069
  • Lastpage
    2074
  • Abstract
    With the increasing requirements of fast response and privacy protection, how to detect network intrusions in a distributed architecture becomes a hot research area in the development of modern information security systems. However, it is a challenge to build such a system, given the difficulties brought by the mixed-attribute property of network connection data and the constraints on network communication. In this paper, we present a framework for distributed detection of network intrusions based on a parametric model. The parametric model can explicitly reflect the distributions of different intrusion types and handle the mixed-attribute data naturally. Based on the model, we can generate an accurate global intrusion detector with a very low cost of communication among the distributed detection sites, and no sharing of original network data is needed. Experimental results demonstrate the advantages of the proposed framework in the distributed intrusion detection application.
  • Keywords
    data privacy; security of data; distributed architecture; information security system; mixed-attribute data; network intrusion detection; parametric model; privacy protection; Clustering algorithms; Data mining; Information security; Information systems; Intrusion detection; Machine learning algorithms; Neural networks; Parametric statistics; Protection; Statistical analysis; Distributed detection; information security; machine learning;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Systems, Man and Cybernetics, 2008. SMC 2008. IEEE International Conference on
  • Conference_Location
    Singapore
  • ISSN
    1062-922X
  • Print_ISBN
    978-1-4244-2383-5
  • Electronic_ISBN
    1062-922X
  • Type

    conf

  • DOI
    10.1109/ICSMC.2008.4811596
  • Filename
    4811596