Distributed Exchange of Alerts for the Detection of Coordinated Attacks

May 05-May 08

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/CNSR.2008.70

2008 Communication Networks and Servi ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by J. Garcia-Alfaro Articles by M. A. Jaeger Articles by G. M? Articles by I. Barrera Articles by J. Borrell

	ASCII Text	x
	J. Garcia-Alfaro, M. A. Jaeger, G. M?, I. Barrera, J. Borrell, "Distributed Exchange of Alerts for the Detection of Coordinated Attacks," Communication Networks and Services Research, Annual Conference on, pp. 96-103, 2008 Communication Networks and Services Research Conference (CNSR 2008), 2008.

	BibTex	x
	@article{ 10.1109/CNSR.2008.70, author = {J. Garcia-Alfaro and M. A. Jaeger and G. M? and I. Barrera and J. Borrell}, title = {Distributed Exchange of Alerts for the Detection of Coordinated Attacks}, journal ={Communication Networks and Services Research, Annual Conference on}, volume = {0}, year = {2008}, isbn = {978-0-7695-3135-9}, pages = {96-103}, doi = {http://doi.ieeecomputersociety.org/10.1109/CNSR.2008.70}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Communication Networks and Services Research, Annual Conference on TI - Distributed Exchange of Alerts for the Detection of Coordinated Attacks SN - 978-0-7695-3135-9 SP96 EP103 A1 - J. Garcia-Alfaro, A1 - M. A. Jaeger, A1 - G. M?, A1 - I. Barrera, A1 - J. Borrell, PY - 2008 KW - Network Security KW - Attack Prevention System KW - Publish/Subscribe KW - Message Oriented Middleware KW - IDMEF VL - 0 JA - Communication Networks and Services Research, Annual Conference on ER -

G. M?

Attacks and intrusions to information systems cause large revenue losses. The prevention of these attacks is not always possible by just considering information from isolated sources of the network. A global view of the whole system is necessary to react against the different actions of such an attack. The design and deployment of a decentralized system targeted at detecting as well as reacting to information system attacks might benefit from the use of the publish/subscribe model. In this paper, we discuss the advantages and convenience in using this communication paradigm for a general decentralized attack prevention framework and overview the design and implementation of our approach by using a combination of two different publish/subscribe middleware products. Furthermore, we present a quantitative evaluation of our approach.

Index Terms:

Network Security, Attack Prevention System, Publish/Subscribe, Message Oriented Middleware, IDMEF

Citation:

J. Garcia-Alfaro, M. A. Jaeger, G. M?, I. Barrera, J. Borrell, "Distributed Exchange of Alerts for the Detection of Coordinated Attacks," cnsr, pp.96-103, 2008 Communication Networks and Services Research Conference (CNSR 2008), 2008

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.