An Intrusion Detection System for Network Storage Based on System Calls

Author

Geng, Li-zhong ; Jia, Hui-bo

Author_Institution

Dept. of Precision Instrum. & Mechanology, Tsinghua Univ., Beijing, China

Volume

2

fYear

2009

Firstpage

544

Lastpage

547

Abstract

Rapid increase of information resources speeds the development of network storage. And security of network storage satisfies the demands of privacy and safety of the information. Data encryption and personal identity authentication which are based on cryptography can protect the storage against non-authorized access, while they are ineffective for malicious authorized users and inherent attacks. Also heavy performances affect the control of storage. This paper demonstrates an efficient intrusion detection system model for network-attached storage based on system calls and improves the Process Homeostasis to realize the implementation. The experimental results demonstrate high detection rate and low false detection rate. The total performance is about 3% additions when the detection system is running normally.

Keywords

authorisation; cryptography; data privacy; program diagnostics; storage allocation; cryptography; data encryption; information privacy; information resource; information safety; intrusion detection system; malicious authorized user; network storage; personal identity authentication; process homeostasis; system call; Authentication; Cryptography; Data security; Identity-based encryption; Information resources; Information security; Intrusion detection; Privacy; Safety; Secure storage; IDS; NAS; System calls;

fLanguage

English

Publisher

ieee

Conference_Titel

Information Assurance and Security, 2009. IAS '09. Fifth International Conference on

Conference_Location

Xian

Print_ISBN

978-0-7695-3744-3

Type

conf

DOI

10.1109/IAS.2009.100

Filename

5282972