A Streaming Intrusion Detection System for Grid Computing Environments

Author

Smith, Matthew ; Schwarzer, Fabian ; Harbach, Marian ; Noll, Thomas ; Freisleben, Bernd

Author_Institution

Dept. of Math. & Comput. Sci., Univ. of Marburg, Marburg, Germany

fYear

2009

fDate

25-27 June 2009

Firstpage

44

Lastpage

51

Abstract

In this paper, a novel architecture for a streaming intrusion detection system for Grid computing environments is presented. Detection mechanisms based on traditional log-files or single host databases are replaced by a streaming database approach. The streaming architecture allows processing of temporal attack data across multiple sites and offers the potential for performance benefits in large scale systems, since data is processed during its natural flow and only stored as long as necessary for analysis. Two cross-site example attacks in a Grid environment and the streaming detection logic for these attacks are presented to illustrate the approach. Experimental results of a prototypical implementation are presented.

Keywords

database management systems; grid computing; security of data; grid computing environment; large scale system; single host database; streaming database intrusion detection system; streaming detection logic; temporal attack data; traditional log-file; Computer architecture; Computer science; Databases; Grid computing; High performance computing; Intrusion detection; Mathematics; Reconnaissance; Security; Telecommunication traffic; Grid; Intrustion Detection; PIPES; Streaming Database;

fLanguage

English

Publisher

ieee

Conference_Titel

High Performance Computing and Communications, 2009. HPCC '09. 11th IEEE International Conference on

Conference_Location

Seoul

Print_ISBN

978-1-4244-4600-1

Electronic_ISBN

978-0-7695-3738-2

Type

conf

DOI

10.1109/HPCC.2009.99

Filename

5166975