The complexity of modern network architectures and the epidemic diffusion of malware require collaborative approaches for defense. We present a novel distributed system where each component collaborates to the intrusion and malware detection and to the dissemination of the local analyses. The proposed architecture is based on a decentralized, peer-to-peer and sensor-agnostic design that addresses dependability and load unbalance issues affecting existing systems based on centralized and hierarchical schemes. Load balancing properties, ability to tolerate churn, self-organization capabilities and scalability are demonstrated through a prototype integrating different open source defensive software.

Peer-to-peer architecture for collaborative intrusion and malware detection on a large scale / Marchetti, Mirco; Messori, Michele; Colajanni, Michele. - In: INTERNATIONAL JOURNAL OF INFORMATION SECURITY. - ISSN 1615-5262. - STAMPA. - (2009), pp. 475-490. ((Intervento presentato al convegno Information Security 12th International Conference, ISC 2009 tenutosi a Pisa nel 2009-September.

Peer-to-peer architecture for collaborative intrusion and malware detection on a large scale

MARCHETTI, Mirco;MESSORI, MICHELE;COLAJANNI, Michele
2009-01-01

Abstract

The complexity of modern network architectures and the epidemic diffusion of malware require collaborative approaches for defense. We present a novel distributed system where each component collaborates to the intrusion and malware detection and to the dissemination of the local analyses. The proposed architecture is based on a decentralized, peer-to-peer and sensor-agnostic design that addresses dependability and load unbalance issues affecting existing systems based on centralized and hierarchical schemes. Load balancing properties, ability to tolerate churn, self-organization capabilities and scalability are demonstrated through a prototype integrating different open source defensive software.
Information Security 12th International Conference, ISC 2009
Pisa
2009-September
475
490
Marchetti, Mirco; Messori, Michele; Colajanni, Michele
Peer-to-peer architecture for collaborative intrusion and malware detection on a large scale / Marchetti, Mirco; Messori, Michele; Colajanni, Michele. - In: INTERNATIONAL JOURNAL OF INFORMATION SECURITY. - ISSN 1615-5262. - STAMPA. - (2009), pp. 475-490. ((Intervento presentato al convegno Information Security 12th International Conference, ISC 2009 tenutosi a Pisa nel 2009-September.
File in questo prodotto:
Non ci sono file associati a questo prodotto.
Pubblicazioni consigliate

Caricamento pubblicazioni consigliate

Licenza Creative Commons
I metadati presenti in IRIS UNIMORE sono rilasciati con licenza Creative Commons CC0 1.0 Universal, mentre i file delle pubblicazioni sono rilasciati con licenza Attribuzione 4.0 Internazionale (CC BY 4.0), salvo diversa indicazione.
In caso di violazione di copyright, contattare Supporto Iris

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11380/768948
Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 22
  • ???jsp.display-item.citation.isi??? 13
social impact