• DocumentCode
    2740924
  • Title

    Robust and scalable trust management for collaborative intrusion detection

  • Author

    Fung, Carol J. ; Zhang, Jie ; Aib, Issam ; Boutaba, Raouf

  • Author_Institution
    David R. Cheriton Sch. of Comput. Sci., Univ. of Waterloo, Waterloo, ON, Canada
  • fYear
    2009
  • fDate
    1-5 June 2009
  • Firstpage
    33
  • Lastpage
    40
  • Abstract
    The accuracy of detecting intrusions within an intrusion detection network (IDN) depends on the efficiency of collaboration between the peer intrusion detection systems (IDSes) as well as the security itself of the IDN against insider threats. In this paper, we study host-based IDNs and introduce a Dirichlet-based model to measure the level of trustworthiness among peer IDSes according to their mutual experience. The model has strong scalability properties and is robust against common insider threats, such as a compromised or malfunctioning peer. We evaluate our system based on a simulated collaborative host-based IDS network. The experimental results demonstrate the improved robustness, efficiency, and scalability of our system in detecting intrusions in comparison with existing models.
  • Keywords
    security of data; collaborative intrusion detection; host-based intrusion detection network; peer intrusion detection systems; scalable trust management; Collaboration; Collaborative work; Computer network management; Computer science; Computer security; Intrusion detection; Peer to peer computing; Robustness; Scalability; Testing;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Integrated Network Management, 2009. IM '09. IFIP/IEEE International Symposium on
  • Conference_Location
    Long Island, NY
  • Print_ISBN
    978-1-4244-3486-2
  • Electronic_ISBN
    978-1-4244-3487-9
  • Type

    conf

  • DOI
    10.1109/INM.2009.5188784
  • Filename
    5188784