Distributed instrusion prevention in active and extensible networks

Todd Sproull; John Lockwood

doi:10.1007/978-3-540-71500-9_4

Distributed instrusion prevention in active and extensible networks

Todd Sproull
, John Lockwood

Department of Computer Science & Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

2 Scopus citations

Abstract

The proliferation of computer viruses and Internet worms has had a major impact on the Internet Community. Cleanup and control of malicious software (malware) has become a key problem for network administrators. Effective techniques are now needed to protect networks against outbreaks of malware. Wire-speed firewalls have been widely deployed to limit the flow of traffic from untrusted domains. But these devices weakness resides in a limited ability to protect networks from infected machines on otherwise trusted networks. Progressive network administrators have been using an Intrusion Prevention System (IPS) to actively block the flow of malicious traffic. New types of active and extensible network systems that use both microprocessors and reconfigurable logic can perform wire-speed services in order to protect networks against computer virus and Internet worm propagation. This paper discusses a scalable system that makes use of automated worm detection and intrusion prevention to stop the spread of computer viruses and Internet worms using extensible hardware components distributed throughout a network. The contribution of this work is to present how to manage and configure large numbers of distributed and extensible IPSs.

Original language	English
Title of host publication	Active Networks - IFIP TC6, 6th International Working Conference, IWAN 2004 Revised Papers
Editors	Gary J. Minden, Kenneth L. Calvert, Marcin Solarski, Miki Yamamoto
Publisher	Springer Verlag
Pages	54-65
Number of pages	12
ISBN (Print)	9783540714996
DOIs	https://doi.org/10.1007/978-3-540-71500-9_4
State	Published - 2007
Event	6th Annual International Working Conference on Active Networks. IWAN 2004 - Lawrence, KS, United States Duration: Oct 27 2004 → Oct 29 2004

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	3912 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	6th Annual International Working Conference on Active Networks. IWAN 2004
Country/Territory	United States
City	Lawrence, KS
Period	10/27/04 → 10/29/04

Access to Document

10.1007/978-3-540-71500-9_4

Cite this

Sproull, T., & Lockwood, J. (2007). Distributed instrusion prevention in active and extensible networks. In G. J. Minden, K. L. Calvert, M. Solarski, & M. Yamamoto (Eds.), Active Networks - IFIP TC6, 6th International Working Conference, IWAN 2004 Revised Papers (pp. 54-65). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 3912 LNCS). Springer Verlag. https://doi.org/10.1007/978-3-540-71500-9_4

Sproull, Todd ; Lockwood, John. / Distributed instrusion prevention in active and extensible networks. Active Networks - IFIP TC6, 6th International Working Conference, IWAN 2004 Revised Papers. editor / Gary J. Minden ; Kenneth L. Calvert ; Marcin Solarski ; Miki Yamamoto. Springer Verlag, 2007. pp. 54-65 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{d0e9b5677f3f4de59dbdf9c4c2bbd810,

title = "Distributed instrusion prevention in active and extensible networks",

abstract = "The proliferation of computer viruses and Internet worms has had a major impact on the Internet Community. Cleanup and control of malicious software (malware) has become a key problem for network administrators. Effective techniques are now needed to protect networks against outbreaks of malware. Wire-speed firewalls have been widely deployed to limit the flow of traffic from untrusted domains. But these devices weakness resides in a limited ability to protect networks from infected machines on otherwise trusted networks. Progressive network administrators have been using an Intrusion Prevention System (IPS) to actively block the flow of malicious traffic. New types of active and extensible network systems that use both microprocessors and reconfigurable logic can perform wire-speed services in order to protect networks against computer virus and Internet worm propagation. This paper discusses a scalable system that makes use of automated worm detection and intrusion prevention to stop the spread of computer viruses and Internet worms using extensible hardware components distributed throughout a network. The contribution of this work is to present how to manage and configure large numbers of distributed and extensible IPSs.",

author = "Todd Sproull and John Lockwood",

year = "2007",

doi = "10.1007/978-3-540-71500-9\_4",

language = "English",

isbn = "9783540714996",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Verlag",

pages = "54--65",

editor = "Minden, \{Gary J.\} and Calvert, \{Kenneth L.\} and Marcin Solarski and Miki Yamamoto",

booktitle = "Active Networks - IFIP TC6, 6th International Working Conference, IWAN 2004 Revised Papers",

note = "6th Annual International Working Conference on Active Networks. IWAN 2004 ; Conference date: 27-10-2004 Through 29-10-2004",

}

Sproull, T & Lockwood, J 2007, Distributed instrusion prevention in active and extensible networks. in GJ Minden, KL Calvert, M Solarski & M Yamamoto (eds), Active Networks - IFIP TC6, 6th International Working Conference, IWAN 2004 Revised Papers. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 3912 LNCS, Springer Verlag, pp. 54-65, 6th Annual International Working Conference on Active Networks. IWAN 2004, Lawrence, KS, United States, 10/27/04. https://doi.org/10.1007/978-3-540-71500-9_4

Distributed instrusion prevention in active and extensible networks. / Sproull, Todd; Lockwood, John.
Active Networks - IFIP TC6, 6th International Working Conference, IWAN 2004 Revised Papers. ed. / Gary J. Minden; Kenneth L. Calvert; Marcin Solarski; Miki Yamamoto. Springer Verlag, 2007. p. 54-65 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 3912 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Distributed instrusion prevention in active and extensible networks

AU - Sproull, Todd

AU - Lockwood, John

PY - 2007

Y1 - 2007

N2 - The proliferation of computer viruses and Internet worms has had a major impact on the Internet Community. Cleanup and control of malicious software (malware) has become a key problem for network administrators. Effective techniques are now needed to protect networks against outbreaks of malware. Wire-speed firewalls have been widely deployed to limit the flow of traffic from untrusted domains. But these devices weakness resides in a limited ability to protect networks from infected machines on otherwise trusted networks. Progressive network administrators have been using an Intrusion Prevention System (IPS) to actively block the flow of malicious traffic. New types of active and extensible network systems that use both microprocessors and reconfigurable logic can perform wire-speed services in order to protect networks against computer virus and Internet worm propagation. This paper discusses a scalable system that makes use of automated worm detection and intrusion prevention to stop the spread of computer viruses and Internet worms using extensible hardware components distributed throughout a network. The contribution of this work is to present how to manage and configure large numbers of distributed and extensible IPSs.

AB - The proliferation of computer viruses and Internet worms has had a major impact on the Internet Community. Cleanup and control of malicious software (malware) has become a key problem for network administrators. Effective techniques are now needed to protect networks against outbreaks of malware. Wire-speed firewalls have been widely deployed to limit the flow of traffic from untrusted domains. But these devices weakness resides in a limited ability to protect networks from infected machines on otherwise trusted networks. Progressive network administrators have been using an Intrusion Prevention System (IPS) to actively block the flow of malicious traffic. New types of active and extensible network systems that use both microprocessors and reconfigurable logic can perform wire-speed services in order to protect networks against computer virus and Internet worm propagation. This paper discusses a scalable system that makes use of automated worm detection and intrusion prevention to stop the spread of computer viruses and Internet worms using extensible hardware components distributed throughout a network. The contribution of this work is to present how to manage and configure large numbers of distributed and extensible IPSs.

UR - https://www.scopus.com/pages/publications/38049134012

U2 - 10.1007/978-3-540-71500-9_4

DO - 10.1007/978-3-540-71500-9_4

M3 - Conference contribution

AN - SCOPUS:38049134012

SN - 9783540714996

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 54

EP - 65

BT - Active Networks - IFIP TC6, 6th International Working Conference, IWAN 2004 Revised Papers

A2 - Minden, Gary J.

A2 - Calvert, Kenneth L.

A2 - Solarski, Marcin

A2 - Yamamoto, Miki

PB - Springer Verlag

T2 - 6th Annual International Working Conference on Active Networks. IWAN 2004

Y2 - 27 October 2004 through 29 October 2004

ER -

Sproull T, Lockwood J. Distributed instrusion prevention in active and extensible networks. In Minden GJ, Calvert KL, Solarski M, Yamamoto M, editors, Active Networks - IFIP TC6, 6th International Working Conference, IWAN 2004 Revised Papers. Springer Verlag. 2007. p. 54-65. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-540-71500-9_4

Distributed instrusion prevention in active and extensible networks

Abstract

Publication series

Conference

Access to Document

Other files and links

Fingerprint

Cite this