RECLAMO: virtual and collaborative honeynets based on trust management and autonomous systems applied to intrusion management

Gil Pérez, Manuel and Mateos Lanchas, Verónica and Fernández Cambronero, David and Martínez Pérez, Jose Luis and Villagra González, Victor Abraham (2013). RECLAMO: virtual and collaborative honeynets based on trust management and autonomous systems applied to intrusion management. In: "Seventh International Conference Complex, Intelligent, and Software Intensive Systems (CISIS)", 03/07/2013 - 05/07/2013, Taichung, Taiwan. pp. 219-227. https://doi.org/10.1109/CISIS.2013.44.

Description

Title: RECLAMO: virtual and collaborative honeynets based on trust management and autonomous systems applied to intrusion management
Author/s:
  • Gil Pérez, Manuel
  • Mateos Lanchas, Verónica
  • Fernández Cambronero, David
  • Martínez Pérez, Jose Luis
  • Villagra González, Victor Abraham
Item Type: Presentation at Congress or Conference (Article)
Event Title: Seventh International Conference Complex, Intelligent, and Software Intensive Systems (CISIS)
Event Dates: 03/07/2013 - 05/07/2013
Event Location: Taichung, Taiwan
Title of Book: Seventh International Conference Complex, Intelligent, and Software Intensive Systems (CISIS)
Date: 2013
Subjects:
Freetext Keywords: Autonomous systems; reaction networks; trust and reputation; collaborative systems; virtualization
Faculty: E.T.S.I. Telecomunicación (UPM)
Department: Ingeniería de Sistemas Telemáticos [hasta 2014]
Creative Commons Licenses: Recognition - No derivative works - Non commercial

Full text

[img]
Preview
PDF - Requires a PDF viewer, such as GSview, Xpdf or Adobe Acrobat Reader
Download (279kB)

Abstract

Security intrusions in large systems is a problem due to its lack of scalability with the current IDS-based approaches. This paper describes the RECLAMO project, where an architecture for an Automated Intrusion Response System (AIRS) is being proposed. This system will infer the most appropriate response for a given attack, taking into account the attack type, context information, and the trust and reputation of the reporting IDSs. RECLAMO is proposing a novel approach: diverting the attack to a specific honeynet that has been dynamically built based on the attack information. Among all components forming the RECLAMO's architecture, this paper is mainly focused on defining a trust and reputation management model, essential to recognize if IDSs are exposing an honest behavior in order to accept their alerts as true. Experimental results confirm that our model helps to encourage or discourage the launch of the automatic reaction process.

More information

Item ID: 25985
DC Identifier: http://oa.upm.es/25985/
OAI Identifier: oai:oa.upm.es:25985
DOI: 10.1109/CISIS.2013.44
Official URL: http://ieeexplore.ieee.org/xpls/abs_all.jsp?arnumber=6603893
Deposited by: Memoria Investigacion
Deposited on: 14 May 2014 16:16
Last Modified: 22 Sep 2014 11:39
  • Logo InvestigaM (UPM)
  • Logo GEOUP4
  • Logo Open Access
  • Open Access
  • Logo Sherpa/Romeo
    Check whether the anglo-saxon journal in which you have published an article allows you to also publish it under open access.
  • Logo Dulcinea
    Check whether the spanish journal in which you have published an article allows you to also publish it under open access.
  • Logo de Recolecta
  • Logo del Observatorio I+D+i UPM
  • Logo de OpenCourseWare UPM