Title :
IFTS: intrusion forecast and traceback based on union defense environment
Author :
Leu, Fang-Yie ; Yang, Wei-Jie ; Chang, Wen-Kui
Author_Institution :
Comput. Sci. & Inf. Eng., Tunghai Univ., Taiwan
Abstract :
Network-based intrusion detection system (NIDS) is developed to monitor network traffic in order to detect network intrusion. But it often lacks global cooperative capability. When facing attacks, e.g., DDoS, an intrusion detection system (IDS) needs an overall scheme to respond properly. Also, Internet consists of network management units (NMUs). It would be better if several nearby surrounding NMUs can collaboratively guard and protect their important surrounded neighbor. In this article, we propose an intrusion forecast and traceback system (IFTS) based on union defense environment. IFTS monitors network forwarding traffic, thus forecasting malicious behaviors for its neighbor NMD, called protected NMU (P-NMU). With forecasting, P-NMU can predetermine the way to treat the intrusion packets. IFTS deploys a hash-based intrusion traceback subsystem to trace intruders.
Keywords :
Internet; security of data; telecommunication network management; telecommunication traffic; DDoS; Internet; P-NMU; global cooperative capability; intrusion forecast; intrusion packet; intrusion traceback subsystem; network intrusion detection; network management units; network traffic; network-based intrusion detection system; protected NMU; traceback system; union defense environment; Computer crime; Computer hacking; Computer science; IP networks; Injuries; Internet; Intrusion detection; Protection; Protocols; Telecommunication traffic;
Conference_Titel :
Parallel and Distributed Systems, 2005. Proceedings. 11th International Conference on
Print_ISBN :
0-7695-2281-5
DOI :
10.1109/ICPADS.2005.170
