Memorias de investigación
Ponencias en congresos:
RECLAMO: Virtual and Collaborative Honeynets based on Trust Management and Autonomous Systems applied to Intrusion Management
Año:2013
Áreas de investigación
  • Telemática
Datos
Descripción
Security intrusions in large systems is a problem due to its lack of scalability with the current IDS-based approaches. This paper describes the RECLAMO project, where an architecture for an Automated Intrusion Response System (AIRS) is being proposed. This system will infer the most appropriate response for a given attack, taking into account the attack type, context information, and the trust and reputation of the reporting IDSs. RECLAMO is proposing a novel approach: diverting the attack to a specific honeynet that has been dynamically built based on the attack information. Among all components forming the RECLAMO?s architecture, this paper is mainly focused on defining a trust and reputation management model, essential to recognize if IDSs are exposing an honest behavior in order to accept their alerts as true. Experimental results confirm that our model helps to encourage or discourage the launch of the automatic reaction process.
Internacional
Si
Nombre congreso
Seventh International Conference on Complex, Intelligent, and Software Intensive Systems
Tipo de participación
960
Lugar del congreso
Taiwan
Revisores
Si
ISBN o ISSN
978-07-6954-992-7
DOI
http://dx.doi.org/10.1109/CISIS.2013.44
Fecha inicio congreso
03/07/2013
Fecha fin congreso
05/07/2013
Desde la página
219
Hasta la página
227
Título de las actas
Complex, Intelligent, and Software Intensive Systems (CISIS), 2013 Seventh International Conference on
Esta actividad pertenece a memorias de investigación
Participantes
Grupos de investigación, Departamentos, Centros e Institutos de I+D+i relacionados
  • Creador: Grupo de Investigación: Redes y Servicios de Telecomunicación e Internet
  • Departamento: Ingeniería de Sistemas Telemáticos