SLA-based complementary approach for network intrusion detection
作者: Abdulghani Ali AhmedAman JantanTat-Chee Wan
作者单位: 1School of Computer Sciences, Universiti Sains Malaysia, 1180 USM, Penang, Malaysia
刊名: Computer Communications, 2011, Vol.34 (14), pp.1738-1749
来源数据库: Elsevier Journal
DOI: 10.1016/j.comcom.2011.03.013
关键词: SLAIntrusions detectionDifferentiated serviceMPLS techniqueComplementary measurements
英文摘要: Abstract(#br)Enhancing the intrusion detection system is essential to maintain user confidence in network services security. However, the threat of intruders on Internet services is prevalent. This paper proposes a distributed edge-to-edge complementary approach for intrusion detection in a DiffServ/MPLS domain. The QoS metrics are inspected at the edges routers to determine anomalous behavior in the network traffic. Consumed ratios of one-way delay variation (OWDV) and packet loss are computed to monitor service level agreement (SLA) violations. The bandwidth ratio is measured to differentiate abnormal from normal traffic as well as to detect multiple intrusions launched simultaneously. We employed SLA as a comparison scale to infer the deviation between the users consumed ratios and the...
全文获取路径: Elsevier  (合作)
影响因子:1.079 (2012)

  • intrusion 侵入
  • network 网络
  • detection 探测
  • complementary 补的
  • technique 技术
  • service 服务
  • based 基于
  • approach