Skip to Main content Skip to Navigation
Conference papers

FIELDS : Flow Intrusion Extrusion Largescale Detection System

Abstract : This paper presents an advanced pre-processing, called FIELDS, for analyzing the network traffic based on flow assessments. FIELDS is an extensible Network Security Monitoring that supports 1) advanced traffic pre-processing, 2) forensics and 3) existing Network Extrusion/Intrusion Detection Systems. FIELDS has been experimented during two months using a large real network thanks to its non intrusive nature. The results show the efficiency of different heuristics for pre-processing the traffic relevant of an intrusion. FIELDS provides an unified and efficient tool for pre-processing the network traffic and detecting/controlling the potential internal/external intruders. FIELDS solves the problem of scalability for the monitoring of the security of large networks. It can be easily extended to integrate other heuristics and correlate the different analysis.
Document type :
Conference papers
Complete list of metadata

https://hal.inria.fr/hal-00771333
Contributor : Jérémy Briffaut <>
Submitted on : Tuesday, January 8, 2013 - 2:29:49 PM
Last modification on : Tuesday, May 12, 2020 - 1:32:14 PM

Identifiers

  • HAL Id : hal-00771333, version 1

Citation

Jérémy Briffaut, Nicolas Grenèche, Quentin Narvor, Christian Toinard. FIELDS : Flow Intrusion Extrusion Largescale Detection System. The Sixth International Conference on Emerging Security Information, Systems and Technologies, Aug 2012, Rome, Italy. ⟨hal-00771333⟩

Share

Metrics

Record views

239