Paper Info
Title
Iterative Security Risk Analysis for Network Flows Based on Provenance and Interdependency
Abstract
Discovering high risk network flows and hosts in a high throughput network is a challenging task of network monitoring. Emerging complicated attack scenarios such as DDoS attacks increase the complexity of tracking malicious and high risk network activities within a huge number of monitored network flows. To address this problem, we propose an iterative framework for assessing risk scores for hosts and network flows. To obtain risk scores of flows, we take into account two properties, flow attributes and flow provenance. Also, our iterative risk assessment measures the risk scores of hosts and flows based on an interdependency property where the risk score of a flow influences the risk of its source and destination hosts, and the risk score of a host is evaluated by risk scores of flows initiated by or terminated at the host. Moreover, the update mechanism in our framework allows flows to keep streaming into the system while our risk assessment method performs an online monitoring task. The experimental results show that our approach is effective in detecting high risk hosts and flows as well as sufficiently efficient to be deployed in high throughput networks compared to other algorithms.
Year
DOI
Venue
2013
10.1109/DCOSS.2013.26
DCOSS
Keywords
Field
DocType
iterative security risk analysis,high risk network activity,network monitoring,network flow,monitored network flow,iterative risk assessment,high risk host,risk score,risk assessment method,high throughput network,high risk network flow,iterative methods,throughput,security,computational modeling,computer network security,risk analysis,algorithm design and analysis,risk management
Flow network,Data mining,Denial-of-service attack,Computer science,Risk analysis (business),Iterative method,Network security,Computer network,Risk assessment,Throughput,Network monitoring,Distributed computing
Conference
Citations 
PageRank 
References 
0
0.34
16
Authors
3
Name
Order
Citations
PageRank
Mohsen Rezvani18211.39
Aleksandar Ignjatovic255649.24
Sanjay Jha31745157.12