文章基本信息

标题：Collaborative Intrusion Detection Networks and Insider Attacks
本地全文：下载
作者：Carol Fung
期刊名称：Journal of Wireless Mobile Networks, Ubiquitous Computing, and Dependable Applications
印刷版ISSN：2093-5374
电子版ISSN：2093-5382
出版年度：2011
卷号：2
期号：1
页码：63-74
出版社：Innovative Information Science & Technology Research Group
摘要：Cyber intrusion is becoming an increasingly global and urgent problem. Intrusion DetectionSystems (IDSs) are deployed to identify intrusions and mitigate their damage. A stand alone IDSdoes not have complete information or knowledge to detect intrusions. A Collaborative IntrusionDetection Network (CIDN) consists in a set of cooperating IDSs which use collective knowledgeand experience to achieve improved intrusion detection accuracy. However, insider attackers mayseverely degrade the efficiency of CIDNs. This paper provides a survey of some CIDNs and analyzestheir robustness against insider attacks. We first classify network intrusions, IDSs, and insider attacksfor CIDNs according to their behaviors and the techniques they use. A taxonomy of CIDNs is thenprovided with an analysis based on criteria of topology, scope, specialization, data privacy awareness,and their vulnerabilities to insider attacks. Some of the open challenges and future directions incooperative CIDNs are discussed in the last section