Real-Time and Resilient Intrusion Detection: A Flow-Based Approach


Share/Save/Bookmark

Hofstede, Rick and Pras, Aiko (2012) Real-Time and Resilient Intrusion Detection: A Flow-Based Approach. In: 6th International Conference on Autonomous Infrastructure, Management, and Security, AIMS 2012, 4-8 June 2012, Luxembourg, Luxembourg.

[img]
Preview
PDF
175Kb
Abstract:Flow-based intrusion detection will play an important role in high-speed networks, due to the stringent performance requirements of packet-based solutions. Flow monitoring technologies, such as NetFlow or IPFIX, aggregate individual packets into flows, requiring new intrusion detection algorithms to deal with the aggregated data. These algorithms are subject to constraints on real-time and accurate detection of intrusions, due to the nature of current flow monitoring technologies. In this paper, we propose a framework for flow-based intrusion detection, aiming to detect intrusions in real-time, and to be resilient against negative effects of attacks on monitoring systems. This research is still in its initial phase and will contribute to a Ph.D. thesis after four years.
Item Type:Conference or Workshop Item
Copyright:© 2012 Springer
Faculty:
Electrical Engineering, Mathematics and Computer Science (EEMCS)
Research Group:
Link to this item:http://purl.utwente.nl/publications/80709
Official URL:http://dx.doi.org/10.1007/978-3-642-30633-4_13
Export this item as:BibTeX
EndNote
HTML Citation
Reference Manager

 

Repository Staff Only: item control page