DocumentCode :
2274466
Title :
Nabs: a system for detecting resource abuses via characterization of flow content type
Author :
Shanmugasundaram, Kulesh ; Kharrazi, Mehdi ; Memon, Nasir
Author_Institution :
Polytech. Univ. Brooklyn, NY, USA
fYear :
2004
fDate :
6-10 Dec. 2004
Firstpage :
316
Lastpage :
325
Abstract :
One of the growing problems faced by network administrators is the abuse of computing resources by authorized and unauthorized personnel. The nature of abuse may vary from using unauthorized applications to serving unauthorized content. Proliferation of peer-to-peer networks and wide use of tunnels makes it difficult to detect such abuses and easy to circumvent security policies. This paper presents the design and implementation of a system, called Nabs, that characterizes content types of network flows based solely on the payload which can then be used to identify abuses of computing resources. The proposed method does not depend on packet headers or other simple packet characteristics hence is more robust to circumvention.
Keywords :
authorisation; computer network management; content management; information resources; peer-to-peer computing; Nabs system; authorization; flow content type characterization; peer-to-peer network; resource abuse detection; security policy; tunnel; unauthorized personnel; Bandwidth; Computer networks; Face detection; Intrusion detection; Peer to peer computing; Protocols; Robustness; Telecommunication traffic; Tunneling; Web server;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Computer Security Applications Conference, 2004. 20th Annual
ISSN :
1063-9527
Print_ISBN :
0-7695-2252-1
Type :
conf
DOI :
10.1109/CSAC.2004.24
Filename :
1377238
Link To Document :
بازگشت