Integrating grid with intrusion detection

Author

Leu, Fang-Yie ; Lin, Jia-Chun ; Li, Ming-Chang ; Yang, Chao-Tung ; Shih, Po-Chi

Author_Institution

Dept. of Comput. Sci. & Inf. Eng., Tung-Hai Univ., Taichung, Taiwan

Volume

1

fYear

2005

fDate

28-30 March 2005

Firstpage

304

Abstract

In recent years, distributed denial-of-service (DDoS) and denial-of-service (DoS) are the most dreadful network threats. Single-node IDS often suffers from losing its detection effectiveness and capability when processing enormous network traffic. To solve the drawbacks, we propose grid-based IDS, called grid intrusion detection system (GIDS), which uses grid computing resources to detect intrusion packets. For balancing detection load, score subtraction approach (SSA) and score addition approach (SAA) are deployed. Furthermore, to effectively detect intrusions, a two-phase packet detection process is proposed. The first phase detects logical and momentary attacks. Chronic attacks are detected in the second phase. Experiments are also performed and the results show that GIDS is truly an outstanding system in detecting attacks.

Keywords

grid computing; resource allocation; security of data; DDoS; DoS; chronic attack; denial-of-service; distributed denial-of-service; grid intrusion detection system; load balancing; momentary attack; score addition approach; score subtraction approach; two-phase packet detection; Chaos; Computer crashes; Computer crime; Computer science; Floods; Grid computing; Intrusion detection; Phase detection; Resource management; Telecommunication traffic; GIDS; Grid; SAA; SSA; chronic attack; momentary attack;

fLanguage

English

Publisher

ieee

Conference_Titel

Advanced Information Networking and Applications, 2005. AINA 2005. 19th International Conference on

ISSN

1550-445X

Print_ISBN

0-7695-2249-1

Type

conf

DOI

10.1109/AINA.2005.221

Filename

1423509