An alert communication infrastructure for a decentralized attack prevention framework

Author

García, Joaquín ; Borrell, Joan ; Jaeger, Michael A. ; Mühl, Gero

Author_Institution

dEIC, Barcelona Autonomous Univ., Catalonia

fYear

2005

fDate

11-14 Oct. 2005

Firstpage

234

Lastpage

237

Abstract

The cooperation between the different entities of a decentralized prevention system can be solved efficiently using the publish/subscribe communication model. Here, clients can share and correlate alert information about the systems they monitor. In this paper, we present the advantages and convenience in using this communication model for a general decentralized prevention framework. Additionally, we outline the design for a specific architecture, and evaluate our design using a freely available publish/subscribe message oriented middleware

Keywords

computer networks; middleware; security of data; alert communication infrastructure; decentralized attack prevention; decentralized prevention system; detection system; network security; publish/subscribe communication model; publish/subscribe message oriented middleware; reaction system; Communication system security; Computer networks; Computer security; Information security; Knowledge based systems; Message passing; Message-oriented middleware; Monitoring; Peer to peer computing; Routing; Detection and Reaction Systems; Network Security; Publish/Subscribe Communication Model;

fLanguage

English

Publisher

ieee

Conference_Titel

Security Technology, 2005. CCST '05. 39th Annual 2005 International Carnahan Conference on

Conference_Location

Las Palmas

Print_ISBN

0-7803-9245-0

Type

conf

DOI

10.1109/CCST.2005.1594878

Filename

1594878