Enhancing Network Security: Host Trustworthiness Estimation

Authors

JIRSÍK Tomáš ČELEDA Pavel

Year of publication 2014
Type Article in Proceedings
Conference Monitoring and Securing Virtualized Networks and Services, Lecture Notes in Computer Science, Vol. 8508
MU Faculty or unit

Institute of Computer Science

Citation
Web http://dx.doi.org/10.1007/978-3-662-43862-6_8
Doi http://dx.doi.org/10.1007/978-3-662-43862-6_8
Field Informatics
Keywords network flow; host; model; trustworthiness; scoring
Attached files
Description Network connected devices has become inherent part of our lives. These devices have come to be more and more mobile and are target of various malware attacks. An inability to guarantee or check proper security settings of such devices poses a serious risk to network security. In this paper we propose a novel concept of flow based host trustworthiness estimation. The estimated trustworthiness determines a level of the risk to the network security the host posses. This concept enables network operators to identify a potential dangerous host in their network and take an appropriate precautions. Models used for trustworthiness estimation are based on scoring either single events or host characteristics. In order to be able to estimate trustworthiness of a host even in large scale networks, the data used for estimation are reduced only to extended network flows. The research is in its initial phase and will conclude with Ph.D. thesis in three years.
Related projects:

You are running an old browser version. We recommend updating your browser to its latest version.

More info