NDLI: New opportunities for load balancing in network-wide intrusion detection systems.

Please wait, while we are loading the content...

New opportunities for load balancing in network-wide intrusion detection systems.

Content Provider	CiteSeerX
Author	Heorhiadi, Victor Reiter, Michael K. Sekar, Vyas Subjectdescriptors, Categoriesand
Abstract	As traffic volumes and the types of analysis grow, network intrusiondetectionsystems(NIDS)faceacontinuousscalingchallenge. Management realities, however, limit NIDS hardware upgrades to occurtypicallyonceevery3-5years. Giventhattrafficpatternscan change dramatically, this leaves a significant scaling challenge in theinterim. Thismotivatestheneedforpracticalsolutionsthatcan help administrators better utilize and augment their existing NIDS infrastructure. To this end, we design a general architecture for network-wide NIDS deployment that leverages three scaling opportunities: on-path distribution to split responsibilities, replicatingtraffictoNIDSclusters,andaggregatingintermediateresultsto split expensive NIDS processing. The challenge here is to balance boththecomputeloadacrossthenetworkandthetotalcommunicationcostincurredviareplicationandaggregation. Weimplementa backwards-compatible mechanism to enable existing NIDS infrastructuretoleveragethesebenefits. Usingemulatedandtrace-driven evaluationsonseveralreal-worldnetworktopologies,weshowthat our proposal can substantially reduce the maximum computation load, provide better resilience under traffic variability, and offer improved detection coverage.
File Format	PDF
Access Restriction	Open
Subject Keyword	New Opportunity Network-wide Intrusion Detection System Load Balancing Nids Hardware Upgrade Existing Nids Infrastructure General Architecture Giventhattrafficpatternscan Change Detection Coverage Weimplementa Backwards-compatible Mechanism Nids Infrastructuretoleveragethesebenefits Management Reality Maximum Computation Load Network-wide Nids Deployment Help Administrator Significant Scaling Challenge Analysis Grow Andaggregatingintermediateresultsto Split Expensive Nids Processing On-path Distribution Traffic Volume Network Intrusiondetectionsystems Traffic Variability
Content Type	Text

Central Library (ISO-9001:2015 Certified)
Indian Institute of Technology Kharagpur
Kharagpur, West Bengal, India | PIN - 721302

See location in the Map
03222 282435
Mail: support@ndl.gov.in

Sl.	Authority	Responsibilities	Communication Details
1	Ministry of Education (GoI), Department of Higher Education	Sanctioning Authority	https://www.education.gov.in/ict-initiatives
2	Indian Institute of Technology Kharagpur	Host Institute of the Project: The host institute of the project is responsible for providing infrastructure support and hosting the project	https://www.iitkgp.ac.in
3	National Digital Library of India Office, Indian Institute of Technology Kharagpur	The administrative and infrastructural headquarters of the project	Dr. B. Sutradhar bsutra@ndl.gov.in
4	Project PI / Joint PI	Principal Investigator and Joint Principal Investigators of the project	Dr. B. Sutradhar bsutra@ndl.gov.in Prof. Saswat Chakrabarti will be added soon
5	Website/Portal (Helpdesk)	Queries regarding NDLI and its services	support@ndl.gov.in
6	Contents and Copyright Issues	Queries related to content curation and copyright issues	content@ndl.gov.in
7	National Digital Library of India Club (NDLI Club)	Queries related to NDLI Club formation, support, user awareness program, seminar/symposium, collaboration, social media, promotion, and outreach	clubsupport@ndl.gov.in
8	Digital Preservation Centre (DPC)	Assistance with digitizing and archiving copyright-free printed books	dpc@ndl.gov.in
9	IDR Setup or Support	Queries related to establishment and support of Institutional Digital Repository (IDR) and IDR workshops	idr@ndl.gov.in