Access Restriction

Author Kruegel, C. ♦ Valeur, F. ♦ Vigna, G. ♦ Kemmerer, R.
Sponsorship IEEE Comput. Soc. Tech. Committee on Security & Privacy
Source IEEE Xplore Digital Library
Content type Text
Publisher Institute of Electrical and Electronics Engineers, Inc. (IEEE)
File Format PDF
Copyright Year ©2002
Language English
Subject Domain (in DDC) Computer science, information & general works ♦ Data processing & computer science
Subject Keyword Intrusion detection ♦ High-speed networks ♦ Telecommunication traffic ♦ Performance analysis ♦ Throughput ♦ Ethernet networks ♦ Computer network management ♦ Bandwidth ♦ Presses ♦ Protection
Abstract As networks become faster there is an emerging need for security, analysis techniques that can keep up with the increased network throughput. Existing network-based intrusion detection sensors can barely, keep up with bandwidths of a few hundred Mbps. Analysis tools that can deal with higher throughput are unable to maintain state between different steps of an attack or they are limited to the analysis of packet headers. We propose a partitioning approach to network security, analysis that supports in-depth, stateful intrusion detection on high-speed links. The approach is centered around a slicing mechanism that divides the overall network traffic into subsets of manageable size. The traffic partitioning is done so that a single slice contains all the evidence necessary to detect a specific attack, making sensor-to-sensor interactions unnecessary. This paper describes the approach and presents a first experimental evaluation of its effectiveness.
Description Author affiliation: Reliable Software Group, California Univ., Santa Barbara, CA, USA (Kruegel, C.; Valeur, F.; Vigna, G.; Kemmerer, R.)
ISBN 0769515436
ISSN 10816011
Educational Role Student ♦ Teacher
Age Range above 22 year
Educational Use Research ♦ Reading
Education Level UG and PG
Learning Resource Type Article
Publisher Date 2002-05-12
Publisher Place USA
Rights Holder Institute of Electrical and Electronics Engineers, Inc. (IEEE)
Size (in Bytes) 334.53 kB
Page Count 9
Starting Page 285
Ending Page 293

Source: IEEE Xplore Digital Library