Saving energy in aggressive intrusion detection through dynamic latency sensitivity recognition. Issue 76 (July 2018)
- Record Type:
- Journal Article
- Title:
- Saving energy in aggressive intrusion detection through dynamic latency sensitivity recognition. Issue 76 (July 2018)
- Main Title:
- Saving energy in aggressive intrusion detection through dynamic latency sensitivity recognition
- Authors:
- Al-Haj Baddar, Sherenaz
Merlo, Alessio
Migliardi, Mauro
Palmieri, Francesco - Abstract:
- Highlights: Selective distributed routing and intrusion detection based on dynamic statistical analysis. Adaptively organizes the intrusion detection activities. Suppresses at the network ingress the undesired components of latency-insensitive traffic. Distributes over multiple nodes the security check for latency sensitive flows. Saves energy without affecting latency-sensitive traffic by introducing processing delays. Abstract: In an always connected world, cyber-attacks and computer security breaches can produce significant financial damages as well as introduce new risks and menaces in everyday's life. As a consequence, more and more sophisticated packet screening/filtering solutions are deployed everywhere, typically on network border devices, in order to sanitize Internet traffic. Despite the obvious benefits associated to the proactive detection of security threats, these devices, by performing deep packet inspection and inline analysis, may both affect latency-sensitive traffic introducing non-negligible delays, and increase the energy demand at the network element level. Starting from these considerations, we present a selective routing and intrusion detection technique based on dynamic statistical analysis. Our technique separates latency-sensitive traffic from latency-insensitive one and adaptively organizes the intrusion detection activities over multiple nodes. This allows suppressing directly at the network ingress, when possible, all the undesired componentsHighlights: Selective distributed routing and intrusion detection based on dynamic statistical analysis. Adaptively organizes the intrusion detection activities. Suppresses at the network ingress the undesired components of latency-insensitive traffic. Distributes over multiple nodes the security check for latency sensitive flows. Saves energy without affecting latency-sensitive traffic by introducing processing delays. Abstract: In an always connected world, cyber-attacks and computer security breaches can produce significant financial damages as well as introduce new risks and menaces in everyday's life. As a consequence, more and more sophisticated packet screening/filtering solutions are deployed everywhere, typically on network border devices, in order to sanitize Internet traffic. Despite the obvious benefits associated to the proactive detection of security threats, these devices, by performing deep packet inspection and inline analysis, may both affect latency-sensitive traffic introducing non-negligible delays, and increase the energy demand at the network element level. Starting from these considerations, we present a selective routing and intrusion detection technique based on dynamic statistical analysis. Our technique separates latency-sensitive traffic from latency-insensitive one and adaptively organizes the intrusion detection activities over multiple nodes. This allows suppressing directly at the network ingress, when possible, all the undesired components of latency-insensitive traffic and distributing on the innermost nodes the security check for latency sensitive flows, prioritizing routing activities over security scanning ones. Our final goal is demonstrating that selective intrusion detection can result in significant energy savings without adversely affecting latency-sensitive traffic by introducing unacceptable processing delays. … (more)
- Is Part Of:
- Computers & security. Issue 76(2018)
- Journal:
- Computers & security
- Issue:
- Issue 76(2018)
- Issue Display:
- Volume 76, Issue 76 (2018)
- Year:
- 2018
- Volume:
- 76
- Issue:
- 76
- Issue Sort Value:
- 2018-0076-0076-0000
- Page Start:
- 311
- Page End:
- 326
- Publication Date:
- 2018-07
- Subjects:
- Dynamic traffic classification -- Network energy containment -- Selective intrusion detection -- Distributed intrusion detection -- Energy-aware security
Computer security -- Periodicals
Electronic data processing departments -- Security measures -- Periodicals
005.805 - Journal URLs:
- http://www.sciencedirect.com/science/journal/01674048 ↗
http://www.elsevier.com/journals ↗ - DOI:
- 10.1016/j.cose.2017.12.003 ↗
- Languages:
- English
- ISSNs:
- 0167-4048
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 3394.781000
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 6812.xml