Towards securing challenge-based collaborative intrusion detection networks via message verification

Research output: Chapters, Conference Papers, Creative and Literary Works (RGC: 12, 32, 41, 45)32_Refereed conference paper (with ISBN/ISSN)

1 Scopus Citations
View graph of relations

Author(s)

Related Research Unit(s)

Detail(s)

Original languageEnglish
Title of host publicationInformation Security Practice and Experience - 14th International Conference, ISPEC 2018, Proceedings
EditorsChunhua Su, Hiroaki Kikuchi
PublisherSpringer
Pages313-328
ISBN (Electronic)978-3-319-99807-7
ISBN (Print)978-3-319-99806-0
Publication statusPublished - Sep 2018

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume11125 LNCS
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Conference

Title14th International Conference on Information Security Practice and Experience, ISPEC 2018
PlaceJapan
CityTokyo
Period25 - 27 September 2018

Abstract

With the increasing number of Internet-of-Things (IoT) devices, intrusion detection systems (IDSs) have been widely deployed in a distributed or collaborative setting, in which a collaborative intrusion detection network (CIDN) improves the detection accuracy of a single IDS by enabling IDS nodes to exchange useful information with each other. To protect CIDNs against insider attacks, challenge-based trust mechanisms are one promising solution to detect malicious nodes through sending challenges. However, several studies have revealed that this kind of mechanism is still vulnerable to some advanced insider attacks like passive message fingerprint attack (PMFA). Motivated by this observation, in this work, we focus on enhancing the security of challenge-based CIDNs and propose a compact but efficient message verification approach to defeat such insider attack by inserting a verifying alarm into each normal request. In the evaluation, we investigate the attack performance under both simulated and real network environments. Experimental results demonstrate that our approach can identify malicious nodes under PMFA and decrease their trust values in a quick manner.

Research Area(s)

  • Challenge-based trust mechanism, Collaborative network, Insider attack, Intrusion detection, Passive message fingerprint attack

Citation Format(s)

Towards securing challenge-based collaborative intrusion detection networks via message verification. / Li, Wenjuan; Meng, Weizhi; Wang, Yu; Han, Jinguang; Li, Jin.

Information Security Practice and Experience - 14th International Conference, ISPEC 2018, Proceedings. ed. / Chunhua Su; Hiroaki Kikuchi. Springer, 2018. p. 313-328 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 11125 LNCS).

Research output: Chapters, Conference Papers, Creative and Literary Works (RGC: 12, 32, 41, 45)32_Refereed conference paper (with ISBN/ISSN)