Advanced Information Networking and Applications Workshops, International Conference on (2008)
Mar. 25, 2008 to Mar. 28, 2008
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/WAINA.2008.34
Due to the increasing amount of data handled by business applications and the need of an easy way to access data by multiple servers, Storage Area Networks (SANs) have been proposed as a solution to be deployed in enterprises networks. Despite their advantages, a set of security issues are related to these next generation high speed network architectures and that may be a threat to the performance and the availability of such networks. In this paper, we propose an intrusion detection and tolerance system that ensures protection of the SANs against attacks. The proposed solution is based on: a) the management of two areas (virtual area and protected area) at each storage node; b) the cooperation of detection modules running on each SAN component; and c) the use of distributed set of rules that are updated and managed in a secure manner. A case study is given to illustrate the proposed system capabilities in terms of intrusion detection and tolerance.
intrusion detection, storage device, protected area, transaction, dynamic rules, Storage Area Network
N. Boudriga and Y. Djemaiel, "Dynamic Detection and Tolerance of Attacks in Storage Area Networks," 2008 22nd International Conference on Advanced Information Networking and Applications (AINA 2008)(AINAW), Okinawa, 2008, pp. 377-382.