SHOMAR: An Open Architecture for Distributed Intrusion Detection Services
| dc.contributor.author | Undercoffer, Jeffrey | |
| dc.contributor.author | Perich, Filip | |
| dc.contributor.author | Nicholas, Charles | |
| dc.date.accessioned | 2019-01-31T15:51:08Z | |
| dc.date.available | 2019-01-31T15:51:08Z | |
| dc.date.issued | 2002-09-12 | |
| dc.description.abstract | Distributed Intrusion Detection Systems (DIDS) offer an alternative to centralized intrusion detection. Current research indicates that a distributed intrusion detection paradigm may afford greater coverage, consequently providing an increase in security. In some cases, DIDS offer an alternative to centralized analysis, consequently improving scalabity. SHOMAR, the distributed architecture presented in this paper, provides an open framework that enables secure access to heterogeneous software and hardware components of a distributed intrusion detection system. SHOMAR is built upon a simplified Public Key Infrastructure that provides for authentication, non-repudiation, anti-playback, and access control. This framework supports a broad spectrum of approaches, ranging from hierarchical to peer-to-peer. The system topology and rules governing access to intrusion detection services is based solely upon policy, which is enforced through the use of a capability manager. The protoype system uses Java. The Extensible Markup Language is the sole medium for data exchange between intrusion detection components. SHOMAR provides a distributed service infrastructure independent of the underlying communications network. | en_US |
| dc.description.uri | https://ebiquity.umbc.edu/paper/html/id/53/SHOMAR-An-Open-Architecture-for-Distributed-Intrusion-Detection-Services | en_US |
| dc.format.extent | 20 pages | en_US |
| dc.genre | technical reports | en_US |
| dc.identifier | doi:10.13016/m2oqx6-ad6q | |
| dc.identifier.uri | http://hdl.handle.net/11603/12671 | |
| dc.language.iso | en_US | en_US |
| dc.relation.isAvailableAt | The University of Maryland, Baltimore County (UMBC) | |
| dc.relation.ispartof | UMBC Computer Science and Electrical Engineering Department Collection | |
| dc.relation.ispartof | UMBC Faculty Collection | |
| dc.relation.ispartof | UMBC Student Collection | |
| dc.relation.ispartofseries | Technical Report;TR-CS-02-14 | |
| dc.rights | This item is likely protected under Title 17 of the U.S. Copyright Law. Unless on a Creative Commons license, for uses protected by Copyright Law, contact the copyright holder or the author. | |
| dc.subject | intrusion detection | en_US |
| dc.subject | security | en_US |
| dc.subject | semantic web | en_US |
| dc.subject | UMBC Ebiquity Research Group | en_US |
| dc.title | SHOMAR: An Open Architecture for Distributed Intrusion Detection Services | en_US |
| dc.type | Text | en_US |