Title :
A Collaborative Network Security Management System in Metropolitan Area Network
Author :
Mu, Beipeng ; Chen, Xinming ; Chen, Zhen
Author_Institution :
Dept. of Autom., Tsinghua Univ., Beijing, China
Abstract :
Network Security Appliances are deployed at the vantage point of the Internet to detect security events and prevent attacks. However, these appliances are not so effective when it comes to distributed attacks such as DDoS. This paper presents a design and implementation of collaborative network security management system (CNSMS), which organize the NetSecu nodes into a hybrid P2P and hierarchy architecture to share the security knowledge. NetSecu nodes are organized into a hierarchy architecture so they could realize different management or security functions. In each level, nodes formed a P2P networks for higher efficiency. To guarantee identity trustworthy and information exchange secure, PKI infrastructure is deployed in CNSMS. Finally experiments are conducted to test the computing and communication cost.
Keywords :
Internet; computer network security; metropolitan area networks; peer-to-peer computing; public key cryptography; DDoS; Internet; NetSecu node; P2P network; PKI infrastructure; collaborative network security management system; distributed denial of service; hierarchy architecture; hybrid P2P architecture; metropolitan area network; network security appliance; Collaboration; Computer architecture; Libraries; Peer to peer computing; Public key; collaboration; network security; secure message exchange;
Conference_Titel :
Communications and Mobile Computing (CMC), 2011 Third International Conference on
Conference_Location :
Qingdao
Print_ISBN :
978-1-61284-312-4
DOI :
10.1109/CMC.2011.130
