A Traffic Classification Algorithm for Intrusion Detection

Niagara Falls, Ontario, Canada May 21-May 23

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/AINAW.2007.62

21st International Conference on Adva ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Tarek Abbes Articles by Adel Bouhoula Articles by Michael Rusinowitch

	ASCII Text	x
	Tarek Abbes, Adel Bouhoula, Michael Rusinowitch, "A Traffic Classification Algorithm for Intrusion Detection," Advanced Information Networking and Applications Workshops, International Conference on, vol. 1, pp. 188-193, 21st International Conference on Advanced Information Networking and Applications Workshops (AINAW'07), 2007.

	BibTex	x
	@article{ 10.1109/AINAW.2007.62, author = {Tarek Abbes and Adel Bouhoula and Michael Rusinowitch}, title = {A Traffic Classification Algorithm for Intrusion Detection}, journal ={Advanced Information Networking and Applications Workshops, International Conference on}, volume = {1}, year = {2007}, isbn = {0-7695-2847-3}, pages = {188-193}, doi = {http://doi.ieeecomputersociety.org/10.1109/AINAW.2007.62}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Advanced Information Networking and Applications Workshops, International Conference on TI - A Traffic Classification Algorithm for Intrusion Detection SN - 0-7695-2847-3 SP188 EP193 A1 - Tarek Abbes, A1 - Adel Bouhoula, A1 - Michael Rusinowitch, PY - 2007 KW - null VL - 1 JA - Advanced Information Networking and Applications Workshops, International Conference on ER -

Tarek Abbes, ISECS, France

Adel Bouhoula, SUP'COM, Tunisia

Michael Rusinowitch, LORIA/INRIA-Lorraine, France

We propose in this paper a new intrusion detection method for supporting high speed traffic. As in firewalls and routers, we rely on packet classification to specialize the task of several Network Intrusions Detection Systems (NIDSs). We build several traffic classes regarding the network configuration and the traffic properties. Then we consider the NIDS characteristics to select for each class the suitable intrusion detection method. Our idea offers several advantages such as load balancing, fault tolerance and attack prevention.

We express our traffic classification method by means of traffic division rules. Then we adequately construct the paths of these rules to reduce the overlapping cases. We transform the rule paths in a prefix trie that we complete by failure links to finally get a Directed Acyclic Graph (DAG). We believe that our classification method is useful for other problems such as firewalling, routing and billing.

Citation:

Tarek Abbes, Adel Bouhoula, Michael Rusinowitch, "A Traffic Classification Algorithm for Intrusion Detection," ainaw, vol. 1, pp.188-193, 21st International Conference on Advanced Information Networking and Applications Workshops (AINAW'07), 2007

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.