On Distributed Intrusion Detection Systems design for high speed networks

Ouissem Ben Fredj, Hassen Sallay, Adel Ammar, Mohsen Rouached, Khaled Al-Shalfan, Majdi Ben Saad

Research output: Chapter in Book/Report/Conference proceedingConference contribution

3 Citations (Scopus)

Abstract

This article states the need of High Performance Computing (HPC) for Distributed Intrusion Detection Systems (DIDS) and discusses the design requirements of the system. Since high-speed networks are the performance key in HPC, the article studies the mapping of the different requirements over the software and hardware features of high-speed networks. The study has resulted in several recommendation for the design of IDS over HSN, starting from the communication protocol and the programming model that should be adopted, to the way the system should handle the communication flow, the memory management and the data transfer between IDS sensors.

Original languageEnglish
Title of host publicationAdvances in E-Activities, Information Security and Privacy - 9th WSEAS Int. Conference on E-Activities, E-ACTIVITIES'10, 9th WSEAS Int. Conference on Information Security and Privacy, ISP'10
Pages115-120
Number of pages6
Publication statusPublished - 2010
Event9th WSEAS International Conference on E-Activities, E-ACTIVITIES'10, 9th WSEAS International Conference on Information Security and Privacy, ISP'10 - Merida, Venezuela, Bolivarian Republic of
Duration: Dec 14 2010Dec 16 2010

Other

Other9th WSEAS International Conference on E-Activities, E-ACTIVITIES'10, 9th WSEAS International Conference on Information Security and Privacy, ISP'10
CountryVenezuela, Bolivarian Republic of
CityMerida
Period12/14/1012/16/10

Fingerprint

HIgh speed networks
Intrusion detection
Systems analysis
Data transfer
Computer programming
Computer hardware
Network protocols
Data storage equipment
Communication
Sensors

Keywords

  • Architecture
  • Communication layer
  • DIDS
  • High speed network
  • HPC
  • RDMA

ASJC Scopus subject areas

  • Information Systems

Cite this

Fredj, O. B., Sallay, H., Ammar, A., Rouached, M., Al-Shalfan, K., & Saad, M. B. (2010). On Distributed Intrusion Detection Systems design for high speed networks. In Advances in E-Activities, Information Security and Privacy - 9th WSEAS Int. Conference on E-Activities, E-ACTIVITIES'10, 9th WSEAS Int. Conference on Information Security and Privacy, ISP'10 (pp. 115-120)

On Distributed Intrusion Detection Systems design for high speed networks. / Fredj, Ouissem Ben; Sallay, Hassen; Ammar, Adel; Rouached, Mohsen; Al-Shalfan, Khaled; Saad, Majdi Ben.

Advances in E-Activities, Information Security and Privacy - 9th WSEAS Int. Conference on E-Activities, E-ACTIVITIES'10, 9th WSEAS Int. Conference on Information Security and Privacy, ISP'10. 2010. p. 115-120.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Fredj, OB, Sallay, H, Ammar, A, Rouached, M, Al-Shalfan, K & Saad, MB 2010, On Distributed Intrusion Detection Systems design for high speed networks. in Advances in E-Activities, Information Security and Privacy - 9th WSEAS Int. Conference on E-Activities, E-ACTIVITIES'10, 9th WSEAS Int. Conference on Information Security and Privacy, ISP'10. pp. 115-120, 9th WSEAS International Conference on E-Activities, E-ACTIVITIES'10, 9th WSEAS International Conference on Information Security and Privacy, ISP'10, Merida, Venezuela, Bolivarian Republic of, 12/14/10.
Fredj OB, Sallay H, Ammar A, Rouached M, Al-Shalfan K, Saad MB. On Distributed Intrusion Detection Systems design for high speed networks. In Advances in E-Activities, Information Security and Privacy - 9th WSEAS Int. Conference on E-Activities, E-ACTIVITIES'10, 9th WSEAS Int. Conference on Information Security and Privacy, ISP'10. 2010. p. 115-120
Fredj, Ouissem Ben ; Sallay, Hassen ; Ammar, Adel ; Rouached, Mohsen ; Al-Shalfan, Khaled ; Saad, Majdi Ben. / On Distributed Intrusion Detection Systems design for high speed networks. Advances in E-Activities, Information Security and Privacy - 9th WSEAS Int. Conference on E-Activities, E-ACTIVITIES'10, 9th WSEAS Int. Conference on Information Security and Privacy, ISP'10. 2010. pp. 115-120
@inproceedings{7cd2906e65b040d8a277048e35c1c2fa,
title = "On Distributed Intrusion Detection Systems design for high speed networks",
abstract = "This article states the need of High Performance Computing (HPC) for Distributed Intrusion Detection Systems (DIDS) and discusses the design requirements of the system. Since high-speed networks are the performance key in HPC, the article studies the mapping of the different requirements over the software and hardware features of high-speed networks. The study has resulted in several recommendation for the design of IDS over HSN, starting from the communication protocol and the programming model that should be adopted, to the way the system should handle the communication flow, the memory management and the data transfer between IDS sensors.",
keywords = "Architecture, Communication layer, DIDS, High speed network, HPC, RDMA",
author = "Fredj, {Ouissem Ben} and Hassen Sallay and Adel Ammar and Mohsen Rouached and Khaled Al-Shalfan and Saad, {Majdi Ben}",
year = "2010",
language = "English",
isbn = "9789604742585",
pages = "115--120",
booktitle = "Advances in E-Activities, Information Security and Privacy - 9th WSEAS Int. Conference on E-Activities, E-ACTIVITIES'10, 9th WSEAS Int. Conference on Information Security and Privacy, ISP'10",

}

TY - GEN

T1 - On Distributed Intrusion Detection Systems design for high speed networks

AU - Fredj, Ouissem Ben

AU - Sallay, Hassen

AU - Ammar, Adel

AU - Rouached, Mohsen

AU - Al-Shalfan, Khaled

AU - Saad, Majdi Ben

PY - 2010

Y1 - 2010

N2 - This article states the need of High Performance Computing (HPC) for Distributed Intrusion Detection Systems (DIDS) and discusses the design requirements of the system. Since high-speed networks are the performance key in HPC, the article studies the mapping of the different requirements over the software and hardware features of high-speed networks. The study has resulted in several recommendation for the design of IDS over HSN, starting from the communication protocol and the programming model that should be adopted, to the way the system should handle the communication flow, the memory management and the data transfer between IDS sensors.

AB - This article states the need of High Performance Computing (HPC) for Distributed Intrusion Detection Systems (DIDS) and discusses the design requirements of the system. Since high-speed networks are the performance key in HPC, the article studies the mapping of the different requirements over the software and hardware features of high-speed networks. The study has resulted in several recommendation for the design of IDS over HSN, starting from the communication protocol and the programming model that should be adopted, to the way the system should handle the communication flow, the memory management and the data transfer between IDS sensors.

KW - Architecture

KW - Communication layer

KW - DIDS

KW - High speed network

KW - HPC

KW - RDMA

UR - http://www.scopus.com/inward/record.url?scp=79958716445&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=79958716445&partnerID=8YFLogxK

M3 - Conference contribution

SN - 9789604742585

SP - 115

EP - 120

BT - Advances in E-Activities, Information Security and Privacy - 9th WSEAS Int. Conference on E-Activities, E-ACTIVITIES'10, 9th WSEAS Int. Conference on Information Security and Privacy, ISP'10

ER -