A Trust-Aware, P2P-Based Overlay for Intrusion Detection

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Claudiu Duma Articles by Martin Karresand Articles by Nahid Shahmehri Articles by Germano Caronni

17th International Conference on Database and Expert Systems Applications (DEXA'06)

Krakow, Poland

September 04-September 08

ISBN: 0-7695-2641-1

	ASCII Text	x
	Claudiu Duma, Martin Karresand, Nahid Shahmehri, Germano Caronni, "A Trust-Aware, P2P-Based Overlay for Intrusion Detection," Database and Expert Systems Applications, International Workshop on, pp. 692-697, 17th International Conference on Database and Expert Systems Applications (DEXA'06), 2006.

	BibTex	x
	@article{ 10.1109/DEXA.2006.21, author = {Claudiu Duma and Martin Karresand and Nahid Shahmehri and Germano Caronni}, title = {A Trust-Aware, P2P-Based Overlay for Intrusion Detection}, journal ={Database and Expert Systems Applications, International Workshop on}, volume = {0}, year = {2006}, issn = {1529-4188}, pages = {692-697}, doi = {http://doi.ieeecomputersociety.org/10.1109/DEXA.2006.21}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Database and Expert Systems Applications, International Workshop on TI - A Trust-Aware, P2P-Based Overlay for Intrusion Detection SN - 1529-4188 SP692 EP697 A1 - Claudiu Duma, A1 - Martin Karresand, A1 - Nahid Shahmehri, A1 - Germano Caronni, PY - 2006 KW - null VL - 0 JA - Database and Expert Systems Applications, International Workshop on ER -

Claudiu Duma, Linkopings Universitet, Sweden

Martin Karresand, Swedish Defense Research Agency, Sweden

Nahid Shahmehri, Linkopings Universitet, Sweden

Germano Caronni, Sun Microsystems Laboratories, USA

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/DEXA.2006.21

Collaborative intrusion detection systems (IDSs) have a great potential for addressing the challenges posed by the increasing aggressiveness of current Internet attacks. However, one of the major concerns with the proposed collaborative IDSs is their vulnerability to the insider threat. Malicious intruders, infiltrating such a system, could poison the collaborative detectors with false alarms, disrupting the intrusion detection functionality and placing at risk the whole system. In this paper, we propose a P2P-based overlay for intrusion detection (Overlay IDS) that addresses the insider threat by means of a trust-aware engine for correlating alerts and an adaptive scheme for managing trust. We have implemented our system using JXTA framework and we have evaluated its effectiveness for preventing the spread of a real Internet worm over an emulated network. The evaluation results show that our Overlay IDS significantly increases the overall survival rate of the network.

Citation:

Claudiu Duma, Martin Karresand, Nahid Shahmehri, Germano Caronni, "A Trust-Aware, P2P-Based Overlay for Intrusion Detection," dexa, pp.692-697, 17th International Conference on Database and Expert Systems Applications (DEXA'06), 2006

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.