Manuel Gil Pérez, Félix Gómez Mármol, Gregorio Martínez Pérez, Antonio F. Gómez Skarmeta
Journal of Network and Systems Management, vol. 21, no. 1, pp. 128-167
Publication year: 2013

Abstract

Distributed and coordinated attacks in computer networks are causing considerable economic losses worldwide in recent years. This is mainly due to the transition of attackers’ operational patterns towards a more sophisticated and more global behavior. This fact is leading current intrusion detection systems to be more likely to generate false alarms. In this context, this paper describes the design of a collaborative intrusion detection network (CIDN) that is capable of building and sharing collective knowledge about isolated alarms in order to efficiently and accurately detect distributed attacks. It has been also strengthened with a reputation mechanism aimed to improve the detection coverage by dropping false or bogus alarms that arise from malicious or misbehaving nodes. This model will enable a CIDN to detect malicious behaviors according to the trustworthiness of the alarm issuers, calculated from previous interactions with the system. Experimental results will finally demonstrate how entities are gradually isolated as their behavior worsens throughout the time.

Related Publications


Mobility in Collaborative Alert Systems: Building Trust through Reputation

Conference
Manuel Gil Pérez, Félix Gómez Mármol, Gregorio Martínez Pérez, Antonio F. Gómez Skarmeta
Workshop on Wireless Cooperative Network Security (WCNS) in conjunction with the IFIP Networking 2011 Conference, LNCS 6827, pp. 251-262, Valencia, Spain
Publication year: 2011

Building a reputation-based bootstrapping mechanism for newcomers in collaborative alert systems

JournalQ2
Manuel Gil Pérez, Félix Gómez Mármol, Gregorio Martínez Pérez, Antonio F. Skarmeta Gómez
Journal of Computer and System Sciences, Special Issue on Wireless Networks Intrusion, vol. 80, no. 3, pp. 571-590
Publication year: 2014

Co-Authors

This work would not have been possible without the inestimable contribution of:

  • Manuel Gil Pérez
  • Gregorio Martínez Pérez
  • Antonio F. Gómez Skarmeta
Manuel Gil Pérez

Manuel Gil Pérez

University of Murcia

Web
Gregorio Martínez Pérez

Gregorio Martínez Pérez

University of Murcia

Web
Antonio F. Gómez Skarmeta

Antonio F. Gómez Skarmeta

University of Murcia

Web

Citation

Manuel Gil Pérez, Félix Gómez Mármol, Gregorio Martínez Pérez, Antonio F. Gómez Skarmeta, «RepCIDN: a reputation-based collaborative intrusion detection network to lessen the impact of malicious alarms«, Journal of Network and Systems Management, vol. 21, no. 1, pp. 128-167, 2013

Journal Ranking & Impact Factor

Publication remarks

  • Top 5 most downloaded articles in the last 30 days (from 25/05/2012 until 05/11/2012)
  • Top 5 most downloaded articles in the last 90 days (from 07/06/2012 until 01/12/2012)