Attack containment framework for large-scale critical infrastructures

Proceedings - International Conference on Computer Communications and Networks, ICCCN

Volumn , Issue , 2007, Pages 442-449

  Nguyen, Hoang ^a   Nahrstedt, Klara ^a  

^a University of Illinois at Urbana Champaign   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

INFORMATION STRUCTURE; LARGE-SCALE CRITICAL INFRASTRUCTURES;

COMPUTER SIMULATION; DATA ACQUISITION; DATA STRUCTURES; INFORMATION RETRIEVAL;

LARGE SCALE SYSTEMS;

EID: 40949122089     PISSN: 10952055     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ICCCN.2007.4317859     Document Type: Conference Paper

References (30)

1. J. Stamp, J. Dillinger, and W. Young, "Common vulnerabilities in critical infrastructure control systems," Sandia National Laboratories Report, November 2003.
2. "Critical infrastructure protection: Challenges and efforts to secure control systems," GAO-04-354, Tech. Rep.
3. K. Knight, M. Elder, J. Flinn, and P. Marx, "Summaries of three critical infrastructure applications," University of Virginia, Tech. Rep., November 1997.
4. C. Wang, J. Knight, and M. Elder, "On computer viral infection and the effect of immunization," ACM Annual Computer Applications Conference, December 2002.
5. D. Bailey and E. Wright, Practical SCADA for Industry. Newnes, 2003. [6] "Enervista." [Online]. Available: http://www.geindustrial. com/multilin/enervista/launchpad/
6. T. Nash, "An undirected attack against critical infrastructure, " US-CERT, Tech. Rep., 2005.
7. D. Moore, C. Shannon, and J. Brown, "Code-red: a case study on the spread and victims of an internet worm," in ACM/USENIX Internet Measurement Workshop, 2002.
8. D. Moore, V. Paxson, S. Savage, C. Shannon, S. Staniford, and N. Weaver, "Inside the slammer worm," in IEEE Security and Privacy, 2003.
9. D. Moore, C. Shannon, G. M. Voelker, and S. Savage, "Internet quarantine: Requirements for containing self-propagating code," in INFOCOM, 2003.
10. S. Staniford, V. Paxson, and N. Weaver, "How to Own the internet in your spare time," in Proceedings of the 11th USENLX Security Symposium, 2002.
11. J. O. Kephart and S. R. White, "Directed-graph epidemiological models of computer viruses," IEEE Computer Society Symposium on Research in Security and Privacy, 1991.
12. J. O. Kephart, S. R. White, and Chess, "Computers and epidemiology," IEEE Spectrum, May 1993.
13. Z. Chen, L. Gao, and K. Kwiat, "Modeling the spread of active worms," in IEEE INFOCOM, 2003.
14. S. Staniford, D. Moore, V. Paxson, and N. Weaver, "The top speed of flash worms," in WORM, 2004.
15. C. Zou, L. Gao, W. Gong, and D. Towsley, "Monitoring and early warning for internet worms," in Proceedings of the 10th ACM conference on Computer and communication security, 2003.
16. D. Moore, "Network telescopes: Observing small or distant security events," in USENIX Security, 2002.
17. V. Yegneswaran, P. Barford, and D. Plonka, "On the design and use of internet sinks for network abuse monitoring," in Proceedings of Recent Advances in Intrusion Detection, 2004.
18. "Distributed intrusion detection system." [Online]. Available: http://www.dshield.org
19. D. Nojiri, J. Rowe, and K. Levitt, "Cooperative response strategies for large scale attack mitigation," DARPA Information Survivability Conference and Exposition, 2003.
20. C. G. Senthilkumar and K. Levitt, "Hierarchically controlled cooperative response strategies for internet scale attacks," in Proceedings of The International Conference on Dependable Systems and Networks, 2003.
21. K. G. Anagnostakis, M. B. Greenwald, S. Ioannidis, A. D. Keromytis, and D. Li, "A cooperative immunization system for an untrusting internet," ICON, 2003.
22. K. G. Anagnostakis, S. Ioannidis, A. D. Keromytis, and M. B. Greenwald, "Robust reactions to potential day-zero worms through, cooperation and validation," in Information Security Conference (ISC), 2006.
23. M. Costa, J. Crowcroft, M. Castro, A. Rowstron, L. Zhou, L. Zhang, and P. Barham, "Vigilante: End-to-end containment of internet worms," in ACM Symposium on Operating Systems Principles (SOSP), 2005.
24. M. Treaster, W. Conner, I. Gupta, and K. Narhstedt, "Contagalert: Using contagion theory for adaptive, distributed alert propagation," in IEEE International Symposium on Network Computing and Applications (NCA), 2006.
25. D. Lie, J. Mitchell, C. Thekkath, and M. Horowitz, "Specifying and verifying hardware for tamper-resistant software," in In Proceedings of the 2003 IEEE Symposium, on Security and Privacy, May 2003.
26. "Trusted computing group." [Online], Available: https://www.trustedcomputinggroup.org/groups/tpm/
27. B. E. Brodsky and B. S. Darkhovsky, Nonpammetric Methods in Change-Point problems. Kluwer Acadamic Publishers, 1993.
28. H. Kim, B. Rozovskii, and A. Tartakovsky, "A nonparametric multichart cusum test for rapid detection of dos attacks in computer networks," International Journal of Computing and Information Sciences, vol. 2, 2004.
29. E. S. Page, "Continuous inspection, schemes," Biometrika, vol. 1, pp. 100-115, 1954.
30. H. Wang, M.-D. Zhang, and F.-K. G. Shin, "Change-point monitoring for the detection of dos attacks," in IEEE Trans. Dependable Seem: Comput., 2004.