Intelligence, not integration: Distributed regret minimization for IDS Control

Author

Rehák, Martin ; Stiborek, Jan ; Grill, Martin

Author_Institution

Czech Tech. Univ., Prague, Czech Republic

fYear

2011

fDate

11-15 April 2011

Firstpage

217

Lastpage

224

Abstract

We present an empirical study of regret minimization procedure used in a distributed Intrusion Detection System (IDS) to independently adapt the self-contained components of the system without any explicit coordination. We show that the regret minimization methods can be used to build survivable distributed security systems that can only communicate using standard data-transfer protocols (NetFlow, selective traffic mirroring or alerts) and do not need to rely on explicit communication required by more elaborate coordination protocols. The intended impact is dramatically easier integration, maintenance and repair of IDS systems, with only a small impact on system characteristics.

Keywords

game theory; protocols; security of data; IDS control; distributed intrusion detection system; distributed regret minimization; standard data-transfer protocols; Convergence; Game theory; Games; Heuristic algorithms; Minimization; Robustness; Security;

fLanguage

English

Publisher

ieee

Conference_Titel

Computational Intelligence in Cyber Security (CICS), 2011 IEEE Symposium on

Conference_Location

Paris

Print_ISBN

978-1-4244-9905-2

Type

conf

DOI

10.1109/CICYBS.2011.5949406

Filename

5949406

Link To Document

https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2210395