A global security architecture for intrusion detection on computer networks |
| |
| Authors: | Abdoul Karim Ganame Julien Bourgeois Renaud Bidou Francois Spies |
| |
| Affiliation: | aLIFC, Universite de Franche Comte, 4 Place Tarradin, 25200 Montbeliard, France |
| |
| Abstract: | Detecting all kinds of intrusions efficiently requires a global view of the monitored network. Built to increase the security of computer networks, traditional IDS's are unfortunately unable to give a global view of the security of a network. To overcome this situation, we are developing a distributed SOC (Security Operation Center) which is able to detect attacks occurring simultaneously on several sites in a network and to give a global view of the security of that network. In this article, we present the global architecture of our system, called DSOC as well as several methods used to test its accuracy and performance. |
| |
| Keywords: | IDS Distributed intrusion detection SOC Network security Global view |
| 本文献已被 ScienceDirect 等数据库收录! |
