Garcia Cordero, Carlos ; Traverso, Giulia ; Nojoumian, Mehrdad ; Habib, Sheikh Mahbub ; Mühlhäuser, Max ; Buchmann, Johannes ; Vasilomanolakis, Emmanouil (2018)
Sphinx: a Colluder-Resistant Trust Mechanism for Collaborative Intrusion Detection.
In: IEEE Access, 6
doi: 10.1109/ACCESS.2018.2880297
Artikel, Bibliographie
Kurzbeschreibung (Abstract)
The destructive effects of cyber-attacks demand more proactive security approaches. One such promising approach is the idea of Collaborative Intrusion Detection Systems (CIDSs). These systems combine the knowledge of multiple sensors (e.g., intrusion detection systems, honeypots or firewalls) to create a holistic picture of a monitored network. Sensors monitor parts of a network and exchange alert data to learn from each other, improve their detection capabilities and ultimately identify sophisticated attacks. Nevertheless, if one or a group of sensors is unreliable (due to incompetence or malice), the system might miss important information needed to detect attacks. In this article, we propose Sphinx, an evidence-based trust mechanism capable of detecting unreliable sensors within a CIDS. Sphinx detects, both, single sensors or coalitions of dishonest sensors that lie about the reliability of others to boost or worsen their trust score. Our evaluation shows that, given an honest majority of sensors, dishonesty is punished in a timely manner. Moreover, if several coalitions exist, even when more than 50% of all sensors are dishonest, dishonesty is punished.
| Typ des Eintrags: | Artikel |
|---|---|
| Erschienen: | 2018 |
| Autor(en): | Garcia Cordero, Carlos ; Traverso, Giulia ; Nojoumian, Mehrdad ; Habib, Sheikh Mahbub ; Mühlhäuser, Max ; Buchmann, Johannes ; Vasilomanolakis, Emmanouil |
| Art des Eintrags: | Bibliographie |
| Titel: | Sphinx: a Colluder-Resistant Trust Mechanism for Collaborative Intrusion Detection |
| Sprache: | Englisch |
| Publikationsjahr: | 9 November 2018 |
| Verlag: | IEEE |
| Titel der Zeitschrift, Zeitung oder Schriftenreihe: | IEEE Access |
| Jahrgang/Volume einer Zeitschrift: | 6 |
| DOI: | 10.1109/ACCESS.2018.2880297 |
| Kurzbeschreibung (Abstract): | The destructive effects of cyber-attacks demand more proactive security approaches. One such promising approach is the idea of Collaborative Intrusion Detection Systems (CIDSs). These systems combine the knowledge of multiple sensors (e.g., intrusion detection systems, honeypots or firewalls) to create a holistic picture of a monitored network. Sensors monitor parts of a network and exchange alert data to learn from each other, improve their detection capabilities and ultimately identify sophisticated attacks. Nevertheless, if one or a group of sensors is unreliable (due to incompetence or malice), the system might miss important information needed to detect attacks. In this article, we propose Sphinx, an evidence-based trust mechanism capable of detecting unreliable sensors within a CIDS. Sphinx detects, both, single sensors or coalitions of dishonest sensors that lie about the reliability of others to boost or worsen their trust score. Our evaluation shows that, given an honest majority of sensors, dishonesty is punished in a timely manner. Moreover, if several coalitions exist, even when more than 50% of all sensors are dishonest, dishonesty is punished. |
| Fachbereich(e)/-gebiet(e): | 20 Fachbereich Informatik 20 Fachbereich Informatik > Telekooperation |
| Hinterlegungsdatum: | 16 Nov 2018 10:34 |
| Letzte Änderung: | 19 Aug 2021 10:31 |
| PPN: | |
| Export: | |
| Suche nach Titel in: | TUfind oder in Google |
 |
Frage zum Eintrag |
Optionen (nur für Redakteure)
 |
Redaktionelle Details anzeigen |
Drucken
Impressum