Experimenting with an Intrusion Detection System for Encrypted Networks. (28th January 2010)
- Record Type:
- Journal Article
- Title:
- Experimenting with an Intrusion Detection System for Encrypted Networks. (28th January 2010)
- Main Title:
- Experimenting with an Intrusion Detection System for Encrypted Networks
- Authors:
- Goh, Vik Tor
Zimmermann, Jacob
Looi, Mark - Abstract:
- Network-based Intrusion Detection Systems (NIDSs) analyse network traffic to detect instances of malicious activity. Typically, this is only possible when the network traffic is accessible for analysis. With the growing use of Virtual Private Networks (VPNs) that encrypt network traffic, the NIDS can no longer access this crucial audit data. In this paper, we present an implementation and evaluation of our approach proposed in Goh et al. (2009). It is based on Shamir's secret-sharing scheme and allows a NIDS to function normally in a VPN without any modifications and without compromising the confidentiality afforded by the VPN.
- Is Part Of:
- International journal of business intelligence and data mining. Volume 5:Number 2(2010)
- Journal:
- International journal of business intelligence and data mining
- Issue:
- Volume 5:Number 2(2010)
- Issue Display:
- Volume 5, Issue 2 (2010)
- Year:
- 2010
- Volume:
- 5
- Issue:
- 2
- Issue Sort Value:
- 2010-0005-0002-0000
- Page Start:
- 172
- Page End:
- 191
- Publication Date:
- 2010-01-28
- Subjects:
- NIDS -- network-based intrusion detection systems -- encrypted networks -- VPN -- virtual private networks -- IPsec -- IP security -- Shamir' -- s secret sharing -- SNORT -- malicious activity
006.312 - Journal URLs:
- http://www.inderscience.com/jhome.php?jcode=ijbidm ↗
http://www.inderscience.com/ ↗ - Languages:
- English
- ISSNs:
- 1743-8187
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 8269.xml