Enhancing Collaborative Intrusion Detection Methods Using a Kademlia Overlay Network - Information and Communication Technologies
Conference Papers Year : 2012

Enhancing Collaborative Intrusion Detection Methods Using a Kademlia Overlay Network

Abstract

The two important problems of collaborative intrusion detection are aggregation and correlation of intrusion events. The enormous amount of data generated by detection probes requires significant network and computational capacity to be processed. In this article we show that a distributed hash table based approach can reduce both network and computational load of intrusion detection, while providing almost the same accuracy of detection as centralized solutions. The efficiency of data storage can be improved by selecting Kademlia as the underlying overlay network topology, as its routing can easily adapt to the dynamic properties of such an application.
Fichier principal
Vignette du fichier
978-3-642-32808-4_6_Chapter.pdf (156.86 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01543143 , version 1 (20-06-2017)

Licence

Identifiers

Cite

Zoltán Czirkos, Gábor Hosszú. Enhancing Collaborative Intrusion Detection Methods Using a Kademlia Overlay Network. 18th European Conference on Information and Communications Technologies (EUNICE), Aug 2012, Budapest, Hungary. pp.52-63, ⟨10.1007/978-3-642-32808-4_6⟩. ⟨hal-01543143⟩
57 View
60 Download

Altmetric

Share

More