Defending distributed systems against malicious intrusions and network anomalies

Proceedings - 19th IEEE International Parallel and Distributed Processing Symposium, IPDPS 2005

Volumn 2005, Issue , 2005, Pages

  Hwang, Kai ^a   Chen, Ying ^a   Liu, Hua ^a  

^a UNIVERSITY OF SOUTHERN CALIFORNIA   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

ANOMALY DETECTION SYSTEM (ADS); INTERNET TRAFFIC DATAMINING; NETWORK-BASED INTRUSION DETECTION SYSTEMS (NIDS);

COMPUTER NETWORKS; CYBERNETICS; DATABASE SYSTEMS; EXTRANETS; INTRANETS; SECURITY OF DATA;

DISTRIBUTED COMPUTER SYSTEMS;

EID: 33746272228     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/IPDPS.2005.160     Document Type: Conference Paper

References (16)

1. W. Cohen, "Fast Effective Rule Induction", Proc. of the 12th International Conf. on Machine Learning, Lake Tahoe, CA, Morgan Kaufman Publisher, S.F.1995.
2. DETER and EMIST Projects, "Cyber Defense Technology: Networking and Evaluation", Communications of The ACM, March 2004, pp. 58 - 61.
3. J. L. Hennessy, D. A., Patterson, and H. S. Lin, Editors, Information Technology for Counterterrorism: Immediate Actions and Future Possibilities, National Academies Press, 2003.
4. K. Hwang, S. Song, and J. Lv, "GridSec: Grid Security Enforcement with Trust Integration over Minimal VPN Tunnels", IEEE Computer, submitted July, 2004.
5. Kaleton Internet, "Combination of Misuse and Anomaly intrusion Detection systems", Chonburi, Thailand, Web: http://www.kaleton.com, March 2002.
6. Y.K. Kwok, M. Cai, and K. Hwang, "A Scalable Set-Union Approach to Pushing Back DDoS Attacks", IEEE Symp. on Security and Privacy, submitted Nov.5, 2004.
7. A. Lazarevic, L. Ertoz, V. Kumar, A. Ozgur, and J. Srivastava, "A Comparative Study of Anomaly Detection Schemes in Network Intrusion Detection", Third SIAM Conf. on Data Mining, S.F., 2003.
8. W. Lee and S. Stolfo, "A Framework for Constructing Features and Models for Intrusion Detection Systems", ACM Trans. Inf. and System Security (TISSec), 2000.
9. M. V. Mahoney and P. K. Chan. "An Analysis of the 1999 DARPA/ Lincoln Lab Evaluation Data for Network Anomaly Detection", Proc. of Int'l Symp. Recent Advances in Intrusion Detection, Sept. 2003.pp. 220-237.
10. H. Mannila and H. Toivonen. "Discovering Generalized Episodes using Minimal Occurrences", Proc. of Second Int'l Conf. on Knowledge. Discovery and Datamining, Portland, August, 1996.
11. S. Noel, D. Wijesekera, and C. Youman, "Modern Intrusion Detection, Data Mining, and Degrees of Attack Guilt", in Applications of Data Mining in Computer Security, Barbarà and Jajodia, eds. Kluwer Publishers, Boston, 2002.
12. V. Paxson, " Bro: A System for Detecting Network Intrusions in Real Time", Proc. of the Seventh USENIX Security Symposium, San Antonio, TX. 1998.
13. M. Qin and K. Hwang. "Frequent Episode Rules for Internet Traffic Analysis and Anomaly Detection", Proc. of IEEE Network Computing and Applications, (NCA2004), Cambridge, MA. September 2004.
14. D. J. Ragsdale, C.A. Carver, J. Humphries, and U. Pooch, "Adaptation Techniques for Intrusion Detection and Response Systems", Proc. of the IEEE Int'l Conf. on Systems, Man, and Cybernetics, Nashville, TN., Oct. 8-11, 2000, pp. 2344-2349.
15. th Systems Administration Conf. (LISA '99), Berkeley, CA, 1999, pp. 229 -238.
16. R. Tripathi, Y. K. Kwok, and K. Hwang, "Hawk: Halting Anomaly with Weighted Choking to Rescue Well-Behaved TCP Sessions from Shrew DoS Attacks", IEEE Int'l Conference on Distributed Computing Systems, (ICDCS-2005), submitted October 5, 2004.