Sharing information for event analysis over the wide internet

Masahiro Nagao, Kazuhide Koide, Akihiro Satoh, Glenn Mansfield Keeni, Norio Shiratori

    研究成果: Article

    1 引用 (Scopus)

    抜粋

    Cross-domain event information sharing is a topic of great interest in the area of event based network management. In this work we use data sets which represent actual attacks in the operational Internet. We analyze the data sets to understand the dynamics of the attacks and then go onto show the effectiveness of sharing incident related information to contain these attacks. We describe universal data acquisition system for event based management (UniDAS), a novel system for secure and automated crossdomain event information sharing. The system uses a generic, structured data format based on a standardized incident object description and exchange format (IODEF). IODEF is an XML-based extensible data format for security incident information exchange. We propose a simple and effective security model for IODEF and apply it to the secure and automated generic event information sharing system UniDAS. We present the system we have developed and evaluate its effectiveness.

    元の言語English
    ページ(範囲)382-394
    ページ数13
    ジャーナルJournal of Communications and Networks
    12
    発行部数4
    出版物ステータスPublished - 2010 8

      フィンガープリント

    ASJC Scopus subject areas

    • Computer Networks and Communications
    • Information Systems

    これを引用

    Nagao, M., Koide, K., Satoh, A., Keeni, G. M., & Shiratori, N. (2010). Sharing information for event analysis over the wide internet. Journal of Communications and Networks, 12(4), 382-394.