• DocumentCode
    2210395
  • Title

    Intelligence, not integration: Distributed regret minimization for IDS Control

  • Author

    Rehák, Martin ; Stiborek, Jan ; Grill, Martin

  • Author_Institution
    Czech Tech. Univ., Prague, Czech Republic
  • fYear
    2011
  • fDate
    11-15 April 2011
  • Firstpage
    217
  • Lastpage
    224
  • Abstract
    We present an empirical study of regret minimization procedure used in a distributed Intrusion Detection System (IDS) to independently adapt the self-contained components of the system without any explicit coordination. We show that the regret minimization methods can be used to build survivable distributed security systems that can only communicate using standard data-transfer protocols (NetFlow, selective traffic mirroring or alerts) and do not need to rely on explicit communication required by more elaborate coordination protocols. The intended impact is dramatically easier integration, maintenance and repair of IDS systems, with only a small impact on system characteristics.
  • Keywords
    game theory; protocols; security of data; IDS control; distributed intrusion detection system; distributed regret minimization; standard data-transfer protocols; Convergence; Game theory; Games; Heuristic algorithms; Minimization; Robustness; Security;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Computational Intelligence in Cyber Security (CICS), 2011 IEEE Symposium on
  • Conference_Location
    Paris
  • Print_ISBN
    978-1-4244-9905-2
  • Type

    conf

  • DOI
    10.1109/CICYBS.2011.5949406
  • Filename
    5949406