A Performance-Based Grid Intrusion Detection System

Authors:
Fang-Yie Leu;Jia-Chun Lin;Ming-Chang Li;Chao-Tung Yang
Affiliations:
Tunghai University;Tunghai University;Tunghai University;Tunghai University
Venue:
COMPSAC '05 Proceedings of the 29th Annual International Computer Software and Applications Conference - Volume 01
Year:
2005

Citing 0
Cited 8

Composition of a DIDS by integrating heterogeneous IDSs on grids

Proceedings of the 4th international workshop on Middleware for grid computing
Detection workload in a dynamic grid-based intrusion detection environment

Journal of Parallel and Distributed Computing
Improving reliability of a heterogeneous grid-based intrusion detection platform using levels of redundancies

Future Generation Computer Systems
Intrusion detection and identification system using data mining and forensic techniques

IWSEC'07 Proceedings of the Security 2nd international conference on Advances in information and computer security
An immune mobile agent based grid intrusion detection model

SEAL'06 Proceedings of the 6th international conference on Simulated Evolution And Learning
Immunity and mobile agent based intrusion detection for grid

PRIMA'06 Proceedings of the 9th Pacific Rim international conference on Agent Computing and Multi-Agent Systems
Immunity and mobile agent based grid intrusion detection

ICIC'06 Proceedings of the 2006 international conference on Computational Intelligence and Bioinformatics - Volume Part III
Protecting grids from cross-domain attacks using security alert sharing mechanisms

Future Generation Computer Systems

Quantified Score

Hi-index	0.00

Visualization

Abstract

Distributed Denial-of-Service (DDoS) and Denial-of-Service (DoS) are the most dreadful network threats in recent years. In this paper, we propose a Grid-based IDS, called Performance-based Grid Intrusion Detection System (PGIDS), which exploits Gridýs abundant computing resources to detect enormous intrusion packets and improve the drawbacks of traditional IDSs which suffer from losing their detection effectiveness and capability when processing massive network traffic. For balancing detection load and accelerating the performance of allocating detection node (DN), we use Exponential Average to predict network traffic and then assign the collected actual traffic to the most suitable DN. In addition, Score Subtraction Algorithm (SSA) and Score Addition Algorithm (SAA) are deployed to update and reflect the current performance of a DN. PGIDS detects not only DoS/DDoS attacks but also logical attacks. Experimental results show that PGIDS is truly an outstanding system in detecting attacks.