| HAL-Inria | Publications, software ... of Inria's scientists |
Conference papers
Large Scale Activity Monitoring for distributed honeynets
Abstract : This paper proposes a new distributed monitoring approach based on the notion of centrality of a graph and its evolution in time. We consider an activity profiling method for a distributed monitoring platform and illustrate its usage in two different target deployments. The first one concerns the monitoring of a distributed honeynet, whilst the second deployment target is the monitoring of a large network telecope. The central concept underlying our work are the intersection graphs and a centrality based locality statistics. These graphs have not been used widely in the field of network security. The advantage of this method is that analyzing aggregated activity data is possible by considering the curve of the maximum locality statistics and that important change point moments are well identified.
Cited literature [10 references]
https://hal.inria.fr/inria-00172053
Contributor : Radu State Connect in order to contact the contributor
Submitted on : Thursday, September 13, 2007 - 11:27:58 PM
Last modification on : Wednesday, February 2, 2022 - 3:51:33 PM
Long-term archiving on: : Monday, September 24, 2012 - 12:25:23 PM
Contributor : Radu State Connect in order to contact the contributor
Submitted on : Thursday, September 13, 2007 - 11:27:58 PM
Last modification on : Wednesday, February 2, 2022 - 3:51:33 PM
Long-term archiving on: : Monday, September 24, 2012 - 12:25:23 PM
File
im2007.pdf
Files produced by the author(s)