Dynamic load balancing for network intrusion detection systems based on distributed architectures
作者: Mauro Andreolini , Sara Casolari , Michele Colajanni , Mirco Marchetti
DOI: 10.1109/NCA.2007.17
关键词:
摘要: Increasing traffic and the necessity of stateful analyses impose strong computational requirements on network intrusion detection systems (NIDS), motivate need distributed architectures with multiple sensors. In a context high heavy tailed characteristics, static rules for dispatching slices among sensors cause severe imbalance. Hence, NIDS architecture must be combined adequate mechanisms dynamic load redistribution. this paper, we propose compare different policies activation/deactivation balancer. particular, consider single vs. double threshold schemes, representations based resource measures aggregation models. Our experimental results show that best combination scheme linear is able to achieve really satisfactory balance sensor loads together sensible reduction number balancer activations.
computer.org
ieeecomputersociety.org
unimo.it
researchgate.net 参考文章(18)
Peter A. Dinda, David R. O'Hallaron, Host load prediction using linear models Cluster Computing. ,vol. 3, pp. 265- 280 ,(2000) , 10.1023/A:1019048724544
Michael Rabinovich, Zhen Xiao, Amit Aggarwal, Computing on the Edge: A Platform for Replicating Internet Applications Web Content Caching and Distribution. pp. 57- 77 ,(2004) , 10.1007/1-4020-2258-1_4
Deyun Gao, Yantai Shu, Shuo Liu, O.W.W. Yang, Delay-based adaptive load balancing in MPLS networks international conference on communications. ,vol. 2, pp. 1184- 1188 ,(2002) , 10.1109/ICC.2002.997037
Aimin Sang, San-qi Li, A predictability analysis of network traffic international conference on computer communications. ,vol. 1, pp. 342- 351 ,(2000) , 10.1109/INFCOM.2000.832204
Jaeyeon Jung, Balachander Krishnamurthy, Michael Rabinovich, Flash crowds and denial of service attacks: characterization and implications for CDNs and web sites the web conference. pp. 293- 304 ,(2002) , 10.1145/511446.511485
Diwakar Krishnamurthy, Martin F. Arlitt, Jerry Rolia, Characterizing the Scalability of a Large Web-Based Shopping System ACM Transactions on Internet Technology. ,vol. 1, pp. 44- 69 ,(2001)
Vivek S. Pai, Mohit Aron, Gaurov Banga, Michael Svendsen, Peter Druschel, Willy Zwaenepoel, Erich Nahum, Locality-aware request distribution in cluster-based network servers architectural support for programming languages and operating systems. ,vol. 33, pp. 205- 216 ,(1998) , 10.1145/291006.291048
I. Charitakis, K. Anagnostakis, E. Markatos, An active traffic splitter architecture for intrusion detection 11th IEEE/ACM International Symposium on Modeling, Analysis and Simulation of Computer Telecommunications Systems, 2003. MASCOTS 2003.. pp. 238- 241 ,(2003) , 10.1109/MASCOT.2003.1240665
A. Kamra, V. Misra, E.M. Nahum, Yaksha: a self-tuning controller for managing the performance of 3-tiered Web sites international workshop on quality of service. pp. 47- 56 ,(2004) , 10.1109/IWQOS.2004.1309356
Menno Dobber, Ger Koole, Rob van der Mei, Dynamic load balancing for a grid application ieee international conference on high performance computing data and analytics. pp. 342- 352 ,(2004) , 10.1007/978-3-540-30474-6_38