Provenance-aware security risk analysis for hosts and network flows
作者: Mohsen Rezvani , Aleksandar Ignjatovic , Elisa Bertino , Sanjay Jha
DOI: 10.1109/NOMS.2014.6838250
关键词:
摘要: Detection of high risk network flows and hosts is becoming ever more important challenging. In order to selectively apply deep packet inspection (DPI) one has isolate in real time activities within a huge number monitored flows. To help address this problem, we propose an iterative methodology for simultaneous assessment scores both The proposed approach measures the interdependent manner; thus, score flow influences its source destination hosts, also host evaluated by taking into account initiated or terminated at host. Our experimental results show that such not only effective detecting but, when deployed throughput networks, efficient than PageRank based algorithms.
sci-hub.se 参考文章(15)
Shaonan Wang, Radu State, Mohamed Ourdane, Thomas Engel, Mining NetFlow Records for Critical Network Activities Mechanisms for Autonomous Management of Networks and Services. pp. 135- 146 ,(2010) , 10.1007/978-3-642-13986-4_20
Paramvir Bahl, Z. Morley Mao, Xu Chen, Ming Zhang, Automating network application dependency discovery: experiences, limitations, and new solutions operating systems design and implementation. pp. 117- 130 ,(2008) , 10.5555/1855741.1855750
Matthew V. Mahoney, Philip K. Chan, An analysis of the 1999 DARPA/lincoln Laboratory evaluation data for network anomaly detection recent advances in intrusion detection. pp. 220- 237 ,(2003) , 10.1007/978-3-540-45248-5_13
Martin Roesch, Snort - Lightweight Intrusion Detection for Networks usenix large installation systems administration conference. pp. 229- 238 ,(1999)
Shaonan Wang, Radu State, Mohamed Ourdane, Thomas Engel, FlowRank Proceedings of the 6th International Wireless Communications and Mobile Computing Conference on ZZZ - IWCMC '10. pp. 484- 488 ,(2010) , 10.1145/1815396.1815508
Hyo-Sang Lim, Yang-Sae Moon, Elisa Bertino, Provenance-based trustworthiness assessment in sensor networks Proceedings of the Seventh International Workshop on Data Management for Sensor Networks - DMSN '10. pp. 2- 7 ,(2010) , 10.1145/1858158.1858162
Allan Borodin, Gareth O. Roberts, Jeffrey S. Rosenthal, Panayiotis Tsaparas, Link analysis ranking: algorithms, theory, and experiments ACM Transactions on Internet Technology. ,vol. 5, pp. 231- 297 ,(2005) , 10.1145/1052934.1052942
Marios Iliofotou, Prashanth Pappu, Michalis Faloutsos, Michael Mitzenmacher, Sumeet Singh, George Varghese, Network monitoring using traffic dispersion graphs (tdgs) Proceedings of the 7th ACM SIGCOMM conference on Internet measurement - IMC '07. pp. 315- 320 ,(2007) , 10.1145/1298306.1298349
Srikanth Kandula, Ranveer Chandra, Dina Katabi, What's going on? ACM SIGCOMM Computer Communication Review. ,vol. 38, pp. 87- 98 ,(2008) , 10.1145/1402946.1402970
A Survey on PageRank Computing Internet Mathematics. ,vol. 2, pp. 73- 120 ,(2005) , 10.1080/15427951.2005.10129098