Effective acquaintance management based on Bayesian learning for distributed intrusion detection networks

Effective acquaintance management based on Bayesian learning for distributed intrusion detection networks

An effective Collaborative Intrusion Detection Network (CIDN) allows distributed Intrusion Detection Systems (IDSes) to collaborate and share their knowledge and opinions about intrusions, to enhance the overall accuracy of intrusion assessment as well as the ability of detecting new classes of intr...

Full description

Saved in:
Bibliographic Details
Main Authors: Fung, Carol J., Zhang, Jie, Boutaba, Raouf
Other Authors: School of Computer Engineering
Format: Article
Language:English
Published: 2013
Subjects:
DRNTU::Engineering::Computer science and engineering
Online Access:https://hdl.handle.net/10356/100236
http://hdl.handle.net/10220/16471
Tags: Add Tag
No Tags, Be the first to tag this record!
Institution: Nanyang Technological University
Language: English
id sg-ntu-dr.10356-100236
record_format dspace
spelling sg-ntu-dr.10356-1002362020-05-28T07:17:34Z Effective acquaintance management based on Bayesian learning for distributed intrusion detection networks Fung, Carol J. Zhang, Jie Boutaba, Raouf School of Computer Engineering DRNTU::Engineering::Computer science and engineering An effective Collaborative Intrusion Detection Network (CIDN) allows distributed Intrusion Detection Systems (IDSes) to collaborate and share their knowledge and opinions about intrusions, to enhance the overall accuracy of intrusion assessment as well as the ability of detecting new classes of intrusions. Toward this goal, we propose a distributed Host-based IDS (HIDS) collaboration system, particularly focusing on acquaintance management where each HIDS selects and maintains a list of collaborators from which they can consult about intrusions. Specifically, each HIDS evaluates both the false positive (FP) rate and false negative (FN) rate of its neighboring HIDSes' opinions about intrusions using Bayesian learning, and aggregates these opinions using a Bayesian decision model. Our dynamic acquaintance management algorithm allows each HIDS to effectively select a set of collaborators. We evaluate our system based on a simulated collaborative HIDS network. The experimental results demonstrate the convergence, stability, robustness, and incentive-compatibility of our system. 2013-10-14T05:51:40Z 2019-12-06T20:19:02Z 2013-10-14T05:51:40Z 2019-12-06T20:19:02Z 2012 2012 Journal Article Fung, C. J., Zhang, J., & Boutaba, R. (2012). Effective Acquaintance Management based on Bayesian Learning for Distributed Intrusion Detection Networks. IEEE Transactions on Network and Service Management, 9(3), 320-332. https://hdl.handle.net/10356/100236 http://hdl.handle.net/10220/16471 10.1109/TNSM.2012.051712.110124 en IEEE transactions on network and service management
institution Nanyang Technological University
building NTU Library
country Singapore
collection DR-NTU
language English
topic DRNTU::Engineering::Computer science and engineering
spellingShingle DRNTU::Engineering::Computer science and engineering
Fung, Carol J.
Zhang, Jie
Boutaba, Raouf
Effective acquaintance management based on Bayesian learning for distributed intrusion detection networks
description An effective Collaborative Intrusion Detection Network (CIDN) allows distributed Intrusion Detection Systems (IDSes) to collaborate and share their knowledge and opinions about intrusions, to enhance the overall accuracy of intrusion assessment as well as the ability of detecting new classes of intrusions. Toward this goal, we propose a distributed Host-based IDS (HIDS) collaboration system, particularly focusing on acquaintance management where each HIDS selects and maintains a list of collaborators from which they can consult about intrusions. Specifically, each HIDS evaluates both the false positive (FP) rate and false negative (FN) rate of its neighboring HIDSes' opinions about intrusions using Bayesian learning, and aggregates these opinions using a Bayesian decision model. Our dynamic acquaintance management algorithm allows each HIDS to effectively select a set of collaborators. We evaluate our system based on a simulated collaborative HIDS network. The experimental results demonstrate the convergence, stability, robustness, and incentive-compatibility of our system.
author2 School of Computer Engineering
author_facet School of Computer Engineering
Fung, Carol J.
Zhang, Jie
Boutaba, Raouf
format Article
author Fung, Carol J.
Zhang, Jie
Boutaba, Raouf
author_sort Fung, Carol J.
title Effective acquaintance management based on Bayesian learning for distributed intrusion detection networks
title_short Effective acquaintance management based on Bayesian learning for distributed intrusion detection networks
title_full Effective acquaintance management based on Bayesian learning for distributed intrusion detection networks
title_fullStr Effective acquaintance management based on Bayesian learning for distributed intrusion detection networks
title_full_unstemmed Effective acquaintance management based on Bayesian learning for distributed intrusion detection networks
title_sort effective acquaintance management based on bayesian learning for distributed intrusion detection networks
publishDate 2013
url https://hdl.handle.net/10356/100236
http://hdl.handle.net/10220/16471
_version_ 1681056746604331008

Similar Items