Skip to Main content Skip to Navigation
Conference papers

Enhancing Collaborative Intrusion Detection Methods Using a Kademlia Overlay Network

Abstract : The two important problems of collaborative intrusion detection are aggregation and correlation of intrusion events. The enormous amount of data generated by detection probes requires significant network and computational capacity to be processed. In this article we show that a distributed hash table based approach can reduce both network and computational load of intrusion detection, while providing almost the same accuracy of detection as centralized solutions. The efficiency of data storage can be improved by selecting Kademlia as the underlying overlay network topology, as its routing can easily adapt to the dynamic properties of such an application.
Complete list of metadata

Cited literature [20 references]  Display  Hide  Download

https://hal.inria.fr/hal-01543143
Contributor : Hal Ifip <>
Submitted on : Tuesday, June 20, 2017 - 3:21:10 PM
Last modification on : Friday, December 8, 2017 - 6:04:01 PM
Long-term archiving on: : Friday, December 15, 2017 - 9:13:48 PM

File

978-3-642-32808-4_6_Chapter.pd...
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Zoltán Czirkos, Gábor Hosszú. Enhancing Collaborative Intrusion Detection Methods Using a Kademlia Overlay Network. 18th European Conference on Information and Communications Technologies (EUNICE), Aug 2012, Budapest, Hungary. pp.52-63, ⟨10.1007/978-3-642-32808-4_6⟩. ⟨hal-01543143⟩

Share

Metrics

Record views

84

Files downloads

158