Abstract | ||
---|---|---|
Collaboration of defensive network components of multiple operators is a promising approach for increasing anomaly detection accuracy. This concept involves sharing of possibly sensitive data, hence privacy preservation has to be taken into account. In this paper, we argue that common approaches for sharing traffic information often impede proper analysis due to privacy-preserving mangling operations, and ignore the opportunity to exploit additional knowledge of the originating network operator for interpreting the monitored data. We propose COMINDIS, a lightweight framework for sharing notions of suspiciousness among network operators, and show how to exploit different detection systems for deriving a better understanding of Internet hosts' activities. We evaluate the system both by using a network emulator and by experimenting with a real traffic trace. |
Year | DOI | Venue |
---|---|---|
2011 | 10.1109/GLOCOM.2011.6133889 | IEEE Global Telecommunications Conference (Globecom) |
Keywords | Field | DocType |
data privacy,anomaly detection,internet,computer network security,multiplication operator,collaboration,privacy,cryptography | Anomaly detection,Computer science,Cryptography,Computer security,Network security,Computer network,Exploit,Operator (computer programming),Collaborative network,Information privacy,The Internet | Conference |
ISSN | Citations | PageRank |
1930-529X | 1 | 0.39 |
References | Authors | |
4 | 3 |
Name | Order | Citations | PageRank |
---|---|---|---|
Andreas Berger | 1 | 50 | 5.92 |
Jacopo Cesareo | 2 | 5 | 1.15 |
Alessandro D'Alconzo | 3 | 330 | 26.01 |