Ιδρυματικό Αποθετήριο [SANDBOX]
Πολυτεχνείο Κρήτης
EN  |  EL

Αναζήτηση

Πλοήγηση

Ο Χώρος μου

Network intrusion detection in encrypted traffic

Papadogiannaki Eva, Tsirantonakis Giorgos, Ioannidis Sotirios

Απλή Εγγραφή


URIhttp://purl.tuc.gr/dl/dias/8F439CEA-3888-4672-9B6F-C5627BFD160A-
Αναγνωριστικόhttps://doi.org/10.1109/DSC54232.2022.9888942-
Αναγνωριστικόhttps://ieeexplore.ieee.org/document/9888942-
Γλώσσαen-
Μέγεθος8 pagesen
ΤίτλοςNetwork intrusion detection in encrypted trafficen
ΔημιουργόςPapadogiannaki Evaen
ΔημιουργόςTsirantonakis Giorgosen
ΔημιουργόςIoannidis Sotiriosen
ΔημιουργόςΙωαννιδης Σωτηριοςel
ΕκδότηςInstitute of Electrical and Electronics Engineersen
ΠεριγραφήThis work was supported by the projects CONCORDIA, CyberSANE and COLLABS funded by the European Commission under Grant Agreements No. 830927, No. 833683 and No. 871518.en
ΠερίληψηTraditional signature-based intrusion detection systems inspect packet headers and payloads to report any malicious or abnormal traffic behavior that is observed in the network. With the advent and rapid adoption of network encryption mechanisms, typical deep packet inspection systems that focus only on the processing of network packet payload contents are gradually becoming obsolete. Advancing intrusion detection tools to be also effective in encrypted networks is crucial. In this work, we propose a signature language indicating packet sequences. Signatures detect events of possible intrusions and malicious actions in encrypted networks using packet metadata. We demonstrate the effectiveness of this methodology using different tools for penetrating vulnerable web servers and a public dataset with traffic that originates from IoT malware. We implement the signature language and we integrate it into an intrusion detection system. Using our proposed methodology, the generated signatures can effectively and efficiently report intrusion attempts.en
ΤύποςΠλήρης Δημοσίευση σε Συνέδριοel
ΤύποςConference Full Paperen
Άδεια Χρήσηςhttp://creativecommons.org/licenses/by/4.0/en
Ημερομηνία2024-07-29-
Ημερομηνία Δημοσίευσης2022-
Θεματική ΚατηγορίαNetwork intrusion detectionen
Θεματική ΚατηγορίαInspectionen
Θεματική ΚατηγορίαMetadataen
Θεματική ΚατηγορίαNetwork securityen
Θεματική ΚατηγορίαThroughputen
Θεματική ΚατηγορίαWeb serversen
Θεματική ΚατηγορίαReal-time systemsen
Βιβλιογραφική ΑναφοράE. Papadogiannaki, G. Tsirantonakis and S. Ioannidis, "Network intrusion detection in encrypted traffic," in Proceedings of the 2022 IEEE Conference on Dependable and Secure Computing (DSC 2022), Edinburgh, United Kingdom, 2022, doi: 10.1109/DSC54232.2022.9888942.en

Υπηρεσίες

Στατιστικά