Title :
An Intrusion Detection System for Network Storage Based on System Calls
Author :
Geng, Li-zhong ; Jia, Hui-bo
Author_Institution :
Dept. of Precision Instrum. & Mechanology, Tsinghua Univ., Beijing, China
Abstract :
Rapid increase of information resources speeds the development of network storage. And security of network storage satisfies the demands of privacy and safety of the information. Data encryption and personal identity authentication which are based on cryptography can protect the storage against non-authorized access, while they are ineffective for malicious authorized users and inherent attacks. Also heavy performances affect the control of storage. This paper demonstrates an efficient intrusion detection system model for network-attached storage based on system calls and improves the Process Homeostasis to realize the implementation. The experimental results demonstrate high detection rate and low false detection rate. The total performance is about 3% additions when the detection system is running normally.
Keywords :
authorisation; cryptography; data privacy; program diagnostics; storage allocation; cryptography; data encryption; information privacy; information resource; information safety; intrusion detection system; malicious authorized user; network storage; personal identity authentication; process homeostasis; system call; Authentication; Cryptography; Data security; Identity-based encryption; Information resources; Information security; Intrusion detection; Privacy; Safety; Secure storage; IDS; NAS; System calls;
Conference_Titel :
Information Assurance and Security, 2009. IAS '09. Fifth International Conference on
Conference_Location :
Xian
Print_ISBN :
978-0-7695-3744-3
DOI :
10.1109/IAS.2009.100
