Collaborative intrusion detection networks and insider attacks

Journal of Wireless Mobile Networks, Ubiquitous Computing, and Dependable Applications

Volumn 2, Issue 1, 2011, Pages 63-74

  Fung, Carol ^a  

^a UNIVERSITY OF WATERLOO   (Canada)

Author keywords

[No Author keywords available]

Indexed keywords

EID: 80455152191     PISSN: 20935374     EISSN: 20935382     Source Type: Journal    
DOI: None     Document Type: Article

References (26)

1. Y. C. Z. F. P. R. Z. Zhu, G. Lu and K. Han, "Botnet research survey," in Proc. of the 32nd Annual IEEE International Conference on Computer Software and Applications (COMPSAC'08), Turku, Finland. IEEE, July-August 2008, pp. 967-972.
2. "OSSEC," http://www.ossec.net, Accssed January 2011.
3. "TripWire," http://www.tripwire.com, Accssed January 2011.
4. "Snort," http://www.snort.org, Accssed January 2011.
5. "Bro," http://www.bro-ids.org, Accssed January 2011.
6. J. Ullrich, "DShield," http://www.dshield.org/indexd.html, Accssed January 2011.
7. F. Cuppens and A. Miege, "Alert correlation in a cooperative intrusion detection framework," in Proc. of 2002 IEEE Symposium on Security and Privacy, Oakland, California, USA. IEEE, May 2002, pp. 202-215.
8. R. Janakiraman and M. Zhang, "Indra: a peer-to-peer approach to network intrusion detection and prevention," in Proc. of the 12th IEEE International Workshops on Enabling Technologies (WETICE'03), Linz, Austria. IEEE, June 2003, pp. 226-231.
9. M. Cai, K. Hwang, Y. Kwok, S. Song, and Y. Chen, "Collaborative internet worm containment," IEEE Security & Privacy, vol. 3, no. 3, pp. 25-33, 2005.
10. C. Fung, O. Baysal, J. Zhang, I. Aib, and R. Boutaba, "Trust management for host-based collaborative intrusion detection," in Proc. of the 19th IFIP/IEEE International Workshop on Distributed Systems: Operations and Management (DSOM'08), Samos Island, Greece. IEEE, September 2008.
11. A. Ghosh and S. Sen, "Agent-based distributed intrusion alert system," in Proc. of the 6th International Workshop on Distributed Computing (IWDC'04), Hiroshima, Japan, LNCS, vol. 3326. Springer-Verlag, November 2004, pp. 240-251.
12. V. Yegneswaran, P. Barford, and S. Jha, "Global intrusion detection in the domino overlay system," in Proc. of Network and Distributed System Security Symposium (NDSS'04), San Diego, USA, February 2004.
13. D. Dash, B. Kveton, J. Agosta, E. Schooler, J. Chandrashekar, A. Bachrach, and A. Newman, "When gossip is good: Distributed probabilistic inference for detection of slow network intrusions," in Proc. of the National Conference on Artificial Intelligence, vol. 21, no. 2. Menlo Park, CA; Cambridge, MA; London; AAAI Press; MIT Press; 1999, 2006, p. 1115.
14. A. K. M.E. Locasto, J.J. Parekh and S. Stolfo, "Towards collaborative security and p2p intrusion detection," in Proc. of 2005 IEEE Information Assurance Workshop (IAW'05), New York, USA. IEEE, June 2005, pp. 30-36.
15. Z. Zhong, L. Ramaswamy, and K. Li, "Alpacas: A large-scale privacy-aware collaborative anti-spam system," in Proc. of IEEE INFOCOM 2008, Phoenix, Arizona, USA. IEEE, June 2008, pp. 556-564.
16. J. Douceur, "The sybil attack," in Proc. of the 1st International Workshop on Peer-to-Peer Systems (IPTPS'02), Cambridge, MA, USA, LNCS, vol. 2429. Springer-Verlag, March 2002, pp. 251-260.
17. P. Resnick, K. Kuwabara, R. Zeckhauser, and E. Friedman, "Reputation systems," Commun. ACM, vol. 43, no. 12, pp. 45-48, 2000.
18. D. Dagon, X. Qin, G. Gu, W. Lee, J. Grizzard, J. Levine, and H. Owen, "Honeystat: Local worm detection using honeypots," in Proc. of the 7th International Symposium on Recent Advances in Intrusion Detection (RAID'04), French Riviera, France, LNCS. Springer-Verlag, September 2004, pp. 39-58.
19. "myNetWatchman," http://www.mynetwatchman.com, Accssed January 2011.
20. "CAIDA: The Cooperative Association for Internet Data Analysis," http://www.caida.org, Accssed January 2011.
21. "SANS Internet Storm Center (ISC)," http://isc.sans.org, Accssed January 2011.
22. C. Fung, J. Zhang, I. Aib, and R. Boutaba, "Robust and sscalable trust management for collaborative intrusion detection," in Proc. of the 11th IFIP/IEEE International Symposium on Integrated Network Management (IM'09), Long Island, NY, USA. IEEE, June 2009.
23. J. Grizzard, V. Sharma, C. Nunnery, B. Kang, and D. Dagon, "Peer-to-peer botnets: Overview and case study," in Proc. of the First USENIX Workshop on Hot Topics in Understanding Botnets (HotBots'07), Cambridge, MA, USA, August 2007.
24. T. Holz, C. Gorecki, K. Rieck, and F. Freiling, "Detection and mitigation of fast-flux service networks," in Proc. of the 15th Annual Network and Distributed System Security Symposium (NDSS'08), San Diego, USA, February 2008.
25. C. V. Zhou, C. Leckie, S. Karunasekera, and T. Peng, "A self-healing, self-protecting collaborative intrusion detection architecture to trace-back fast-flux phishing domains," in Proc. of the 2nd IEEE Workshop on Autonomic Communication and Network Management (ACNM'08), Salvador, Brazil. IEEE, April 2008.
26. C. V. Zhou, C. Leckie, and S. Karunasekera, "Collaborative detection of fast flux phishing domains," Journal of Networks, vol. 4, no. 1, pp. 75-84, February 2009.