We present in this paper a decentralized architecture to correlate alerts between cooperative nodes in a secure multicast infrastructure. The purpose of this architecture is to detect and prevent the use of network resources to perform coordinated attacks against third party networks. By means of a cooperative scheme based on message passing, the different nodes of this system will collaborate to detect its participation on a coordinated attack and will react to avoid it. An overview of the implementation of this architecture for GNU/Linux systems will demonstrate the practicability of the system. © Springer-Verlag 2004.
CITATION STYLE
Garcia, J., Autrel, F., Borrell, J., Castillo, S., Cuppens, F., & Navarro, G. (2004). Decentralized publish-subscribe system to prevent coordinated attacks via alert correlation. Lecture Notes in Computer Science (Including Subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), 3269, 223–235. https://doi.org/10.1007/978-3-540-30191-2_18
Mendeley helps you to discover research relevant for your work.