Indra: a peer-to-peer approach to network intrusion detection and prevention

Janakiraman, Ramaprabhu; Waldvogel, Marcel; Zhang, Qi

doi:10.1109/ENABL.2003.1231412

Indra: a peer-to-peer approach to network intrusion detection and prevention

Publikationstyp:	Beitrag zu einer Konferenz
URI (zitierfähiger Link):	http://nbn-resolving.de/urn:nbn:de:bsz:352-opus-24332
Autor/innen:	Janakiraman, Ramaprabhu; Waldvogel, Marcel; Zhang, Qi
Erscheinungsjahr:	2003
Konferenz:	Twelfth IEEE International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises, Linz, Austria
Erschienen in:	WET ICE 2003. Proceedings. Twelfth IEEE International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises, 2003.. - IEEE Comput. Soc, 2003. - S. 226-231. - ISBN 0-7695-1963-6
DOI (zitierfähiger Link):	https://dx.doi.org/10.1109/ENABL.2003.1231412
Zusammenfassung:	While the spread of the Internet has made the network ubiquitous, it has also rendered networked systems vulnerable to malicious attacks orchestrated from anywhere. These attacks or intrusions typically start with attackers infiltrating a network through a vulnerable host and then launching further attacks on the local network or Intranet. Attackers rely on increasingly sophisticated techniques like using distributed attack sources and obfuscating their network addresses. On the other hand, software that guards against them remains rooted in traditional centralized techniques, presenting an easily-targeted single point of failure. Scalable, distributed network intrusion prevention techniques are sorely needed. We propose Indra---a distributed scheme based on sharing information between trusted peers in a network to guard the network as a whole against intrusion attempts. We present initial ideas for running Indra over a peer-to-peer infrastructure to distribute up-to-date rumors, facts, and trust information in a scalable way.
Fachgebiet (DDC):	004 Informatik
Link zur Lizenz:	Nutzungsbedingungen

Zitieren

Dateien zu dieser Ressource

Name: janakiraman03indra.pdf

Größe: 79.95Kb

Format: PDF

Öffnen

Prüfsumme: MD5:12b6aa6073403b4bbdbe8fe590a44377

JANAKIRAMAN, Ramaprabhu, Marcel WALDVOGEL, Qi ZHANG, 2003. Indra: a peer-to-peer approach to network intrusion detection and prevention. Twelfth IEEE International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises. Linz, Austria. In: WET ICE 2003. Proceedings. Twelfth IEEE International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises, 2003.. Twelfth IEEE International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises. Linz, Austria. IEEE Comput. Soc, pp. 226-231. ISBN 0-7695-1963-6. Available under: doi: 10.1109/ENABL.2003.1231412

@inproceedings{Janakiraman2003Indra-6201, title={Indra: a peer-to-peer approach to network intrusion detection and prevention}, year={2003}, doi={10.1109/ENABL.2003.1231412}, isbn={0-7695-1963-6}, publisher={IEEE Comput. Soc}, booktitle={WET ICE 2003. Proceedings. Twelfth IEEE International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises, 2003.}, pages={226--231}, author={Janakiraman, Ramaprabhu and Waldvogel, Marcel and Zhang, Qi} }

Indra: a peer-to-peer approach to network intrusion detection and prevention Janakiraman, Ramaprabhu Janakiraman, Ramaprabhu Zhang, Qi Also in: Proceedings of IEEE WETICE 2003 Workshop on Enterprise Security, Linz, Austria, June 2003 2011-03-24T16:10:09Z 2011-03-24T16:10:09Z While the spread of the Internet has made the network ubiquitous, it has also rendered networked systems vulnerable to malicious attacks orchestrated from anywhere. These attacks or intrusions typically start with attackers infiltrating a network through a vulnerable host and then launching further attacks on the local network or Intranet. Attackers rely on increasingly sophisticated techniques like using distributed attack sources and obfuscating their network addresses. On the other hand, software that guards against them remains rooted in traditional centralized techniques, presenting an easily-targeted single point of failure. Scalable, distributed network intrusion prevention techniques are sorely needed.<br /><br />We propose Indra---a distributed scheme based on sharing information between trusted peers in a network to guard the network as a whole against intrusion attempts. We present initial ideas for running Indra over a peer-to-peer infrastructure to distribute up-to-date rumors, facts, and trust information in a scalable way. Waldvogel, Marcel Zhang, Qi terms-of-use Also publ. in: Proceedings of IEEE WETICE 2003 Workshop on Enterprise Security, Linz, Austria, June 2003 2003 Waldvogel, Marcel application/pdf eng