TY - GEN
T1 - Towards Blockchained Challenge-Based Collaborative Intrusion Detection
AU - Li, Wenjuan
AU - Wang, Yu
AU - Li, Jin
AU - Au, Man Ho
N1 - Funding Information:
Acknowledgments. This work was funded by the National Natural Science Foundation of China (NSFC) Grant No. 61772148, 61802080 and 61802077.
Publisher Copyright:
© Springer Nature Switzerland AG 2019.
PY - 2019
Y1 - 2019
N2 - To protect distributed network resources and assets, collaborative intrusion detection systems/networks (CIDSs/CIDNs) have been widely deployed in various organizations with the purpose of detecting any potential threats. While such systems and networks are usually vulnerable to insider attacks, some kinds of trust mechanisms should be integrated in a real-world application. Challenge-based trust mechanisms are one promising solution, which can measure the trustworthiness of a node by sending challenges to other nodes. In the literature, challenge-based CIDNs have proven to be robust against common insider attacks, but it may still be susceptible to advanced insider attacks. How to further improve the robustness of challenge-based CIDNs remains an issue. Motivated by the recently rapid development of blockchains, in this work, we aim to combine these two and provide a blockchained challenge-based CIDN framework. Our evaluation shows that blockchain technology has the potential to enhance the robustness of challenge-based CIDNs in the aspects of trust management (i.e., enhancing the detection of insider nodes) and alarm aggregation (i.e., identifying untruthful inputs).
AB - To protect distributed network resources and assets, collaborative intrusion detection systems/networks (CIDSs/CIDNs) have been widely deployed in various organizations with the purpose of detecting any potential threats. While such systems and networks are usually vulnerable to insider attacks, some kinds of trust mechanisms should be integrated in a real-world application. Challenge-based trust mechanisms are one promising solution, which can measure the trustworthiness of a node by sending challenges to other nodes. In the literature, challenge-based CIDNs have proven to be robust against common insider attacks, but it may still be susceptible to advanced insider attacks. How to further improve the robustness of challenge-based CIDNs remains an issue. Motivated by the recently rapid development of blockchains, in this work, we aim to combine these two and provide a blockchained challenge-based CIDN framework. Our evaluation shows that blockchain technology has the potential to enhance the robustness of challenge-based CIDNs in the aspects of trust management (i.e., enhancing the detection of insider nodes) and alarm aggregation (i.e., identifying untruthful inputs).
KW - Blockchain technology
KW - Challenge-based trust mechanism
KW - Collaborative network
KW - Insider attack
KW - Intrusion detection
UR - http://www.scopus.com/inward/record.url?scp=85071912073&partnerID=8YFLogxK
U2 - 10.1007/978-3-030-29729-9_7
DO - 10.1007/978-3-030-29729-9_7
M3 - Conference article published in proceeding or book
AN - SCOPUS:85071912073
SN - 9783030297282
T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
SP - 122
EP - 139
BT - Applied Cryptography and Network Security Workshops - ACNS 2019 Satellite Workshops, SiMLA, Cloud S and P, AIBlock, and AIoTS 2019
A2 - Zhou, Jianying
A2 - Deng, Robert
A2 - Li, Zhou
A2 - Majumdar, Suryadipta
A2 - Meng, Weizhi
A2 - Wang, Lingyu
A2 - Zhang, Kehuan
PB - Springer Verlag
T2 - 17th International Conference on Applied Cryptography and Network Security, ACNS 2019
Y2 - 5 June 2019 through 7 June 2019
ER -