Title | ||
---|---|---|
Iterative Security Risk Analysis for Network Flows Based on Provenance and Interdependency |
Abstract | ||
---|---|---|
Discovering high risk network flows and hosts in a high throughput network is a challenging task of network monitoring. Emerging complicated attack scenarios such as DDoS attacks increase the complexity of tracking malicious and high risk network activities within a huge number of monitored network flows. To address this problem, we propose an iterative framework for assessing risk scores for hosts and network flows. To obtain risk scores of flows, we take into account two properties, flow attributes and flow provenance. Also, our iterative risk assessment measures the risk scores of hosts and flows based on an interdependency property where the risk score of a flow influences the risk of its source and destination hosts, and the risk score of a host is evaluated by risk scores of flows initiated by or terminated at the host. Moreover, the update mechanism in our framework allows flows to keep streaming into the system while our risk assessment method performs an online monitoring task. The experimental results show that our approach is effective in detecting high risk hosts and flows as well as sufficiently efficient to be deployed in high throughput networks compared to other algorithms. |
Year | DOI | Venue |
---|---|---|
2013 | 10.1109/DCOSS.2013.26 | DCOSS |
Keywords | Field | DocType |
iterative security risk analysis,high risk network activity,network monitoring,network flow,monitored network flow,iterative risk assessment,high risk host,risk score,risk assessment method,high throughput network,high risk network flow,iterative methods,throughput,security,computational modeling,computer network security,risk analysis,algorithm design and analysis,risk management | Flow network,Data mining,Denial-of-service attack,Computer science,Risk analysis (business),Iterative method,Network security,Computer network,Risk assessment,Throughput,Network monitoring,Distributed computing | Conference |
Citations | PageRank | References |
0 | 0.34 | 16 |
Authors | ||
3 |
Name | Order | Citations | PageRank |
---|---|---|---|
Mohsen Rezvani | 1 | 82 | 11.39 |
Aleksandar Ignjatovic | 2 | 556 | 49.24 |
Sanjay Jha | 3 | 1745 | 157.12 |