Title :
Integrating grid with intrusion detection
Author :
Leu, Fang-Yie ; Lin, Jia-Chun ; Li, Ming-Chang ; Yang, Chao-Tung ; Shih, Po-Chi
Author_Institution :
Dept. of Comput. Sci. & Inf. Eng., Tung-Hai Univ., Taichung, Taiwan
Abstract :
In recent years, distributed denial-of-service (DDoS) and denial-of-service (DoS) are the most dreadful network threats. Single-node IDS often suffers from losing its detection effectiveness and capability when processing enormous network traffic. To solve the drawbacks, we propose grid-based IDS, called grid intrusion detection system (GIDS), which uses grid computing resources to detect intrusion packets. For balancing detection load, score subtraction approach (SSA) and score addition approach (SAA) are deployed. Furthermore, to effectively detect intrusions, a two-phase packet detection process is proposed. The first phase detects logical and momentary attacks. Chronic attacks are detected in the second phase. Experiments are also performed and the results show that GIDS is truly an outstanding system in detecting attacks.
Keywords :
grid computing; resource allocation; security of data; DDoS; DoS; chronic attack; denial-of-service; distributed denial-of-service; grid intrusion detection system; load balancing; momentary attack; score addition approach; score subtraction approach; two-phase packet detection; Chaos; Computer crashes; Computer crime; Computer science; Floods; Grid computing; Intrusion detection; Phase detection; Resource management; Telecommunication traffic; GIDS; Grid; SAA; SSA; chronic attack; momentary attack;
Conference_Titel :
Advanced Information Networking and Applications, 2005. AINA 2005. 19th International Conference on
Print_ISBN :
0-7695-2249-1
DOI :
10.1109/AINA.2005.221
