• DocumentCode
    2096093
  • Title

    A cluster process monitoring tool for intrusion detection: proof-of-concept

  • Author

    Yurcik, William ; Meng, Xin ; Koenig, Gregory A.

  • Author_Institution
    Nat. Center for Supercomput. Applications, Univ. of Illinois at Urbana-Champaign, Urbana, IL, USA
  • fYear
    2004
  • fDate
    16-18 Nov. 2004
  • Firstpage
    427
  • Lastpage
    428
  • Abstract
    Large-scale commodity cluster systems are finding increasing deployment in academic, research, and commercial settings. As a direct result of this popularity, cluster systems are also under increasing security threats. Unfortunately, there have been no corresponding improvements in security tools that specifically address the unique needs of cluster security. The paper describes an ongoing research effort at the National Center for Supercomputing Applications to develop tools for managing cluster security via process monitoring. We describe an extensible architecture and present details of a prototype process monitoring tool focused on intrusion detection.
  • Keywords
    computerised monitoring; security of data; workstation clusters; cluster computing; cluster process monitoring tool; cluster security; commodity cluster systems; extensible architecture; intrusion detection; security tools; Communication system security; Computer architecture; Computer security; Computerized monitoring; Condition monitoring; Context; Data security; Information security; Intrusion detection; National security;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Local Computer Networks, 2004. 29th Annual IEEE International Conference on
  • ISSN
    0742-1303
  • Print_ISBN
    0-7695-2260-2
  • Type

    conf

  • DOI
    10.1109/LCN.2004.1
  • Filename
    1367258
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2096093