A Modular Architecture for Distributed IDS in MANET

机译：MANET中分布式IDS的模块化体系结构

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
相似文献
相关主题

摘要

In this paper we propose a distributed and modular architecture for an intrusion detection system (IDS) dedicated to a mobile ad hoc network (MANET) environment. The main feature of our proposition relies on the use, on each node of the MANET, of a local IDS (LIDS) cooperating with other LIDSes through the use of mobile agents. The modular design is needed as a response to the extensibility requirements related to the complex contexts of MANET. The proposed solution has been validated by a proof-of-concept prototype, which is described in the paper. Two different types of attacks are presented and have been implemented, at the network level and at the application level. The detection of such attacks are formally described by specification of data collection, attack signatures associated with such data and alerts generation, emphasizing the relation of each of these detection steps with the modules in the designed architecture. The use of the management information base (MIB) as a primary data source for the detection process is discussed and modules for MIB data extraction and processing are specified and implemented in the prototype. Experiments exhibit fairly good results, the attacks being col-laboratively detected in real-time.

机译：在本文中，我们提出了一种专用于移动自组织网络（MANET）环境的入侵检测系统（IDS）的分布式模块化体系结构。我们主张的主要特征在于，通过使用移动代理，在MANET的每个节点上使用与其他LIDS协作的本地IDS（LIDS）。需要模块化设计来响应与MANET复杂上下文有关的可扩展性要求。本文所描述的概念验证原型已经验证了所提出的解决方案。在网络级别和应用程序级别，提出并实现了两种不同类型的攻击。通过数据收集的规范，与此类数据关联的攻击签名和警报生成来正式描述此类攻击的检测，并强调这些检测步骤中的每个步骤与设计架构中模块的关系。讨论了使用管理信息库（MIB）作为检测过程的主要数据源，并在原型中指定和实现了用于MIB数据提取和处理的模块。实验显示出相当不错的结果，可以实时协作检测出这些攻击。

著录项

来源
《International Conference on Computational Science and Its Applications - ICCSA 2003 Pt.3 May 18-21, 2003 Montreal, Canada》|2003年|p.91-113|共23页
会议地点 Montreal(CA);Montreal(CA)
作者
Ricardo S. Puttini; Jean-Marc Percher; Ludovic Me; Olivier Camp; Rafael de Sousa Jr.; Claudia J. Barenco Abbas; L. Javier Garcia-Villalba;
展开▼
作者单位

Department of Electric Engineering, University of Brasilia (UnB) Campus Universitario Darcy Ribeiro ― CP 4386 ― Asa Norte Brasilia ― DF ― 70919-970, Brazil;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类自动化技术、计算机技术;
关键词

相似文献

外文文献
中文文献
专利

1. IEEE 802.11分布式协调功能在MANET网络中的性能改善 [J] . 翟旭平, 毕光国, 徐平平东南大学学报（英文版） . 2004,第004期
2. QoS Support in MANETs: a Modular Architecture Based on the IEEE 802.11e Technology [J] . Calafate C.T., Malumbres M.P., Oliver J., Circuits and Systems for Video Technology, IEEE Transactions on . 2009,第5期

机译：MANET中的QoS支持：基于IEEE 802.11e技术的模块化体系结构
3. Development of Modular Humanoid Robot Based on Functionally Distributed Modular Robot Architecture [J] . Tetsuya Taira, Nobuyuki Yamasaki Journal of robotics and mechatronics . 2005,第3期

机译：基于功能分布式模块化机器人架构的模块化人形机器人开发
4. An architecture for automatic service composition in MANET using a distributed service graph [J] . Unai Aguilera, Diego Lopez-de-Ipina Future generation computer systems . 2014,第may期

机译：使用分布式服务图的MANET中自动服务组合的体系结构
5. A Modular Architecture for Distributed IDS in MANET [C] . Ricardo S. Puttini, Jean-Marc Percher, Ludovic Me, International confernce on computational science and its applications . 2003

机译：MANET中分布式IDS的模块化架构
6. Distributed, modular, open control architecture for power conversion systems. [D] . Guo, Jinghong. 2005

机译：用于电源转换系统的分布式，模块化，开放式控制体系结构。
7. Distributed and Modular CAN-Based Architecture for Hardware Control and Sensor Data Integration [O] . Diego P. Losada, Joaquín L. Fernández, Enrique Paz, 2017

机译：基于分布式和模块化CAN的硬件控制和传感器数据集成架构
8. MANETs monitoring with a distributed hybrid architecture [O] . Alvarez Aldana, Jose Alfredo, Maag, Stephane, Zaidi, Fatiha 2016

机译：利用分布式混合架构进行监控的MANET
9. Transition in Gas Turbine Control System Architecture: Modular, Distributed, and Embedded [R] . Culley, D. 2010

机译：燃气轮机控制系统架构的转变：模块化，分布式和嵌入式

A Modular Architecture for Distributed IDS in MANET

摘要

著录项

相似文献

相关主题

期刊订阅