The complexity of modern network architectures and the epidemic diffusion of malware require collaborative approaches for defense. We present a novel distributed system where each component collaborates to the intrusion and malware detection and to the dissemination of the local analyses. The proposed architecture is based on a decentralized, peer-to-peer and sensor-agnostic design that addresses dependability and load unbalance issues affecting existing systems based on centralized and hierarchical schemes. Load balancing properties, ability to tolerate churn, self-organization capabilities and scalability are demonstrated through a prototype integrating different open source defensive software.

Peer-to-peer architecture for collaborative intrusion and malware detection on a large scale / Marchetti, Mirco; Messori, Michele; Colajanni, Michele. - STAMPA. - 5735:(2009), pp. 475-490. (Intervento presentato al convegno 12th Information Security Conference, ISC 2009 tenutosi a Pisa, ita nel 2009-September) [10.1007/978-3-642-04474-8_37].

Peer-to-peer architecture for collaborative intrusion and malware detection on a large scale

MARCHETTI, Mirco;MESSORI, MICHELE;COLAJANNI, Michele
2009

Abstract

The complexity of modern network architectures and the epidemic diffusion of malware require collaborative approaches for defense. We present a novel distributed system where each component collaborates to the intrusion and malware detection and to the dissemination of the local analyses. The proposed architecture is based on a decentralized, peer-to-peer and sensor-agnostic design that addresses dependability and load unbalance issues affecting existing systems based on centralized and hierarchical schemes. Load balancing properties, ability to tolerate churn, self-organization capabilities and scalability are demonstrated through a prototype integrating different open source defensive software.
2009
12th Information Security Conference, ISC 2009
Pisa, ita
2009-September
WOS:000270705600037
2-s2.0-70350414487
5735
475
490
Marchetti, Mirco; Messori, Michele; Colajanni, Michele
Peer-to-peer architecture for collaborative intrusion and malware detection on a large scale / Marchetti, Mirco; Messori, Michele; Colajanni, Michele. - STAMPA. - 5735:(2009), pp. 475-490. (Intervento presentato al convegno 12th Information Security Conference, ISC 2009 tenutosi a Pisa, ita nel 2009-September) [10.1007/978-3-642-04474-8_37].
File in questo prodotto:
Non ci sono file associati a questo prodotto.
Pubblicazioni consigliate

Licenza Creative Commons
I metadati presenti in IRIS UNIMORE sono rilasciati con licenza Creative Commons CC0 1.0 Universal, mentre i file delle pubblicazioni sono rilasciati con licenza Attribuzione 4.0 Internazionale (CC BY 4.0), salvo diversa indicazione.
In caso di violazione di copyright, contattare Supporto Iris

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11380/768948
Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 26
  • ???jsp.display-item.citation.isi??? 16
social impact