Conference Proceedings

Relieving hot spots in collaborative intrusion detection systems during worm outbreaks

CV Zhou, S Karunasekera, C Leckie

NOMS 2008 IEEE IFIP Network Operations and Management Symposium Pervasive Management for Ubiquitous Networks and Services | IEEE | Published : 2008

DOI: 10.1109/NOMS.2008.4575116

Abstract

The increasing number of stealthy and coordinated attacks on the Internet pose a significant threat to network security. Collaborative intrusion detection systems (CIDSs) have therefore been proposed to address this coordinated defense challenge by correlating patterns of suspicious activity based on the source addresses of the suspicious incoming traffic. However, during worm outbreaks, there can be a rapid growth in suspicious evidence that is reported about individual sources of the worm outbreak. In CIDSs that correlate suspicious activity by source address, the evidence relating to these worm spread sources can cause a load "hot-spot", which severely degrades the overall performance of ..

View full abstract

Grants

Citation metrics

7Scopus
6Web of Science
5Dimensions

Keywords

Engineering, Electrical & Electronic
46 Information and Computing Sciences
Telecommunications
Computer Science, Information Systems
Technology
Engineering
Science & Technology
4606 Distributed Computing and Systems Software
Computer Science
4604 Cybersecurity and Privacy