101. Network intrusion detection system embedded on a smart sensor
- Author
-
Universidad de Alicante. Departamento de Tecnología Informática y Computación, Maciá Pérez, Francisco, Mora Gimeno, Francisco José, Marcos-Jorquera, Diego, Gil Martínez-Abarca, Juan Antonio, Ramos Morillo, Héctor, Lorenzo Fonseca, Iren, Universidad de Alicante. Departamento de Tecnología Informática y Computación, Maciá Pérez, Francisco, Mora Gimeno, Francisco José, Marcos-Jorquera, Diego, Gil Martínez-Abarca, Juan Antonio, Ramos Morillo, Héctor, and Lorenzo Fonseca, Iren
- Abstract
This paper proposes a Network Intrusion Detection System (NIDS) embedded in an Smart Sensor inspired device, under a Service Oriented Architecture (SOA) approach, able to operate independently as an anomaly-based NIDS or integrated, transparently, in a Distributed Intrusion Detection System (DIDS). The proposal is innovative, because it combines the advantages of Smart Sensor approach and the subsequent offering of the NIDS functionality as a service with the SOA use in order to achieve their integration with other DIDS components. The main goal of the work is to reduce the huge volume of management tasks inherent to this type of network services, as well as facilitating the design of DIDS whose managing complexity could be restricted within well defined margins. The work also addresses the construction of a physical sensor prototype. This prototype was used to carry out the tests that has demonstrated the proposals validity, providing detection and performance ratios similar to those of existing IDS, but with the advantage of a zero-maintenance approach.
- Published
- 2010