A hybrid intrusion detection system design for computer network security
Computers and Electrical Engineering
Danger theory based SYN flood attack detection in autonomic network
Proceedings of the 2nd international conference on Security of information and networks
An effective defense mechanism against DoS/DDoS attacks in flow-based routers
Proceedings of the 8th International Conference on Advances in Mobile Computing and Multimedia
DOS Attack Analysis and Study of New Measures to Prevent
ISIE '11 Proceedings of the 2011 International Conference on Intelligence Science and Information Engineering
A Design and Implement of IPS Based on Snort
CIS '11 Proceedings of the 2011 Seventh International Conference on Computational Intelligence and Security
A workload characterization study of the 1998 World Cup Web site
IEEE Network: The Magazine of Global Internetworking
A model-based approach to self-protection in computing system
Proceedings of the 2013 ACM Cloud and Autonomic Computing Conference
DDoS mitigation in content distribution networks
International Journal of Wireless and Mobile Computing
| Hi-index | 0.00 |
This paper introduces a security management approach that integrates system monitoring, intrusion detection, and automatic control in order to detect, classify and protect against security attacks automatically. The model-based controller computes the most effective control action to protect the system based on the system measurements, the current and the expect level of future system utilization. In this paper, we implemented the security management framework on a multi-tier enterprise system comprising a set of routers, front virtual machines and hosts and test it with respect to various forms of denial of service attacks (DoS). Throughout the experiment, the security management approach correctly detects and protects the system from these attacks. The paper presents the simulation results and discusses possible extensions of the proposed structure for other forms of DoS and network attacks.