DocumentCode :
2210217
Title :
Wireless security situation awareness with attack identification decision support
Author :
Harmer, Paul ; Thomas, Ryan ; Christel, Brady ; Martin, Richard ; Watson, Clifton
Author_Institution :
Air Force Inst. of Technol., Wright-Patterson AFB, OH, USA
fYear :
2011
fDate :
11-15 April 2011
Firstpage :
144
Lastpage :
151
Abstract :
Wireless networks are a common point of entry for computer network attacks. Due to high traffic volumes, network mission assurance requires tools that can usefully display network traffic data, automatically detect, and identify attacks to provide increased situational awareness to a network administrator. Many metrics used to analyze wireless network traffic and security depend on full access to all nodes. This is impractical in fielded networks. To address these issues, we propose a new set of metrics based on wireless network packet interarrival times. These metrics are displayed in a novel way to provide administrators with a mechanism for identifying possible attacks and their impact on the network. The performance of this visualizer is validated by the use of a linear classifier system, which shows that the chosen metrics can be used to accurately identify attacks. We further argue that the classifier could be used in conjunction with the visualizer as an effective decision support system to aid in maintaining mission assurance.
Keywords :
computer network security; data visualisation; decision support systems; pattern classification; radio networks; telecommunication computing; telecommunication traffic; attack identification decision support system; computer network attack; linear classifier system; visualizer; wireless network packet interarrival time; wireless network traffic; wireless security situation awareness; Ad hoc networks; Channel capacity; Jamming; Measurement; Security; Streaming media; Wireless networks; decision support; jammer; metrics; mission assurance; security; situational awareness; visualization; wireless;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Computational Intelligence in Cyber Security (CICS), 2011 IEEE Symposium on
Conference_Location :
Paris
Print_ISBN :
978-1-4244-9905-2
Type :
conf
DOI :
10.1109/CICYBS.2011.5949399
Filename :
5949399
Link To Document :
بازگشت