Defending Distributed Systems Against Malicious Intrusions and Network Anomalies

Denver, Colorado April 04-April 08

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/IPDPS.2005.160

19th IEEE International Parallel and ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Kai Hwang Articles by Ying Chen Articles by Hua Liu

	ASCII Text	x
	Kai Hwang, Ying Chen, Hua Liu, "Defending Distributed Systems Against Malicious Intrusions and Network Anomalies," Parallel and Distributed Processing Symposium, International, vol. 18, pp. 286a, 19th IEEE International Parallel and Distributed Processing Symposium (IPDPS'05) - Workshop 17, 2005.

	BibTex	x
	@article{ 10.1109/IPDPS.2005.160, author = {Kai Hwang and Ying Chen and Hua Liu}, title = {Defending Distributed Systems Against Malicious Intrusions and Network Anomalies}, journal ={Parallel and Distributed Processing Symposium, International}, volume = {18}, year = {2005}, issn = {1530-2075}, pages = {286a}, doi = {http://doi.ieeecomputersociety.org/10.1109/IPDPS.2005.160}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Parallel and Distributed Processing Symposium, International TI - Defending Distributed Systems Against Malicious Intrusions and Network Anomalies SN - 1530-2075 SP EP A1 - Kai Hwang, A1 - Ying Chen, A1 - Hua Liu, PY - 2005 KW - null VL - 18 JA - Parallel and Distributed Processing Symposium, International ER -

Kai Hwang, University of Southern California, Los Angeles

Ying Chen, University of Southern California, Los Angeles

Hua Liu, University of Southern California, Los Angeles

Network security breaches hinder the application of distributed computing systems manifested as the Grids, clusters, intranets, extranets, or P2P systems. A new integrated approach is presented for building future, network-based intrusion detection systems (NIDS). We integrate the Snort (a NIDS) with a custom-designed anomaly detection system (ADS) to yield a powerful cyber defense system, called CAIDS. This system detects known attacks through signature matching and reveals network anomalies by Internet traffic datamining.

The CAIDS design integrates two different detection engines for alert correlation between intrusions and anomalies. We aim to automate signature generation into Snort database. The system was tested over an Internet trace of 24 millions of packets containing 200 attacks. Our simulation experiments result in a 75% detection rate on all attacks with a low 5% false alarm rate. The system generates alerts on both intrusive attacks to distributed resources and anomalies detected in the Internet, intranet, and extranet connections.

Citation:

Kai Hwang, Ying Chen, Hua Liu, "Defending Distributed Systems Against Malicious Intrusions and Network Anomalies," ipdps, vol. 18, pp.286a, 19th IEEE International Parallel and Distributed Processing Symposium (IPDPS'05) - Workshop 17, 2005

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.