Detecting Credential Abuse in the Grid Using Bayesian Networks

Author

Kunz, Christopher ; Tahmasebi, Nina ; Risse, Thomas ; Smith, Matthew

Author_Institution

L3S Res. Inst., Leibniz Univ. Hannover, Hannover, Germany

fYear

2011

fDate

21-23 Sept. 2011

Firstpage

114

Lastpage

120

Abstract

Proxy Credentials serve as a principal for authentication and authorization in the Grid. Despite their limited lifetime, they can be intercepted and abused by an attacker. We counter this threat by enabling Grid users to track their credentials´ use in Grid infrastructures, reporting all authentication and delegation operations to an auditing service. Our approach combines modifications to the security infrastructure with a Bayesian classifier in order to provide a reliable method for detecting abusive Grid credential usage and alerting the legitimate user. To validate this approach we created an extensive Grid simulation, simulating different types of legitimate and illegitimate use of credentials. Our experiments show that we can detect 99.5% of all abuse and our solution can thus help to increase security in the Grid.

Keywords

authorisation; belief networks; grid computing; Bayesian classifier; Bayesian networks; abusive grid credential usage; authentication; authorization; credential abuse detection; grid infrastructures; grid simulation; proxy credentials; security infrastructure; Authentication; Bayesian methods; Computational modeling; Training; Training data; Web services; Abuse Detection; Auditing; Bayesian Classifiers; Grid Computing; Proxy Credentials;

fLanguage

English

Publisher

ieee

Conference_Titel

Grid Computing (GRID), 2011 12th IEEE/ACM International Conference on

Conference_Location

Lyon

ISSN

1550-5510

Print_ISBN

978-1-4577-1904-2

Type

conf

DOI

10.1109/Grid.2011.23

Filename

6076506