Towards trust-aware collaborative intrusion detection: Challenges and solutions

Emmanouil Vasilomanolakis; Sheikh Mahbub Habib; Pavlos Milaszewicz; Rabee Sohail Malik; Max Mühlhäuser

doi:10.1007/978-3-319-59171-1_8

Towards trust-aware collaborative intrusion detection: Challenges and solutions

Emmanouil Vasilomanolakis^*, Sheikh Mahbub Habib, Pavlos Milaszewicz, Rabee Sohail Malik, Max Mühlhäuser

^*Corresponding author for this work

Research output: Contribution to book/anthology/report/conference proceeding › Article in proceeding › Research › peer-review

5 Citations (Scopus)

Abstract

Collaborative Intrusion Detection Systems (CIDSs) are an emerging field in cyber-security. In such an approach, multiple sensors collaborate by exchanging alert data with the goal of generating a complete picture of the monitored network. This can provide significant improvements in intrusion detection and especially in the identification of sophisticated attacks. However, the challenge of deciding to which extend a sensor can trust others, has not yet been holistically addressed in related work. In this paper, we firstly propose a set of requirements for reliable trust management in CIDSs. Afterwards, we carefully investigate the most dominant CIDS trust schemes. The main contribution of the paper is mapping the results of the analysis to the aforementioned requirements, along with a comparison of the state of the art. Furthermore, this paper identifies and discusses the research gaps and challenges with regard to trust and CIDSs.

Original language	English
Title of host publication	Trust Management XI - 11th IFIP WG 11.11 International Conference, IFIPTM 2017, Proceedings
Editors	Jan-Philipp Steghofer, Babak Esfandiari
Number of pages	16
Publisher	Springer Publishing Company
Publication date	2017
Pages	94-109
ISBN (Print)	9783319591704
DOIs	https://doi.org/10.1007/978-3-319-59171-1_8
Publication status	Published - 2017
Externally published	Yes
Event	11th IFIP WG 11.11 International Conference on Trust Management, IFIPTM 2017 - Gothenburg, Sweden Duration: 12 Jun 2017 → 16 Jun 2017

Conference

Conference	11th IFIP WG 11.11 International Conference on Trust Management, IFIPTM 2017
Country/Territory	Sweden
City	Gothenburg
Period	12/06/2017 → 16/06/2017

Series	I F I P Advances in Information and Communication Technology
Volume	505
ISSN	1868-4238

Bibliographical note

Funding Information:
This work has received funding from the European Union’s Horizon 2020 Research and Innovation Program, PROTECTIVE, under Grant Agreement No 700071.

Publisher Copyright:
© IFIP International Federation for Information Processing 2017.

Access to Document

10.1007/978-3-319-59171-1_8

AUB Link

Search for the material in Aalborg University Library's search engine

Cite this

Vasilomanolakis, E., Habib, S. M., Milaszewicz, P., Malik, R. S., & Mühlhäuser, M. (2017). Towards trust-aware collaborative intrusion detection: Challenges and solutions. In J-P. Steghofer, & B. Esfandiari (Eds.), Trust Management XI - 11th IFIP WG 11.11 International Conference, IFIPTM 2017, Proceedings (pp. 94-109). Springer Publishing Company. https://doi.org/10.1007/978-3-319-59171-1_8

Vasilomanolakis, Emmanouil ; Habib, Sheikh Mahbub ; Milaszewicz, Pavlos et al. / Towards trust-aware collaborative intrusion detection : Challenges and solutions. Trust Management XI - 11th IFIP WG 11.11 International Conference, IFIPTM 2017, Proceedings. editor / Jan-Philipp Steghofer ; Babak Esfandiari. Springer Publishing Company, 2017. pp. 94-109 (I F I P Advances in Information and Communication Technology, Vol. 505).

@inproceedings{8a6277604f3346d19e9e1f7353de0e13,

title = "Towards trust-aware collaborative intrusion detection: Challenges and solutions",

abstract = "Collaborative Intrusion Detection Systems (CIDSs) are an emerging field in cyber-security. In such an approach, multiple sensors collaborate by exchanging alert data with the goal of generating a complete picture of the monitored network. This can provide significant improvements in intrusion detection and especially in the identification of sophisticated attacks. However, the challenge of deciding to which extend a sensor can trust others, has not yet been holistically addressed in related work. In this paper, we firstly propose a set of requirements for reliable trust management in CIDSs. Afterwards, we carefully investigate the most dominant CIDS trust schemes. The main contribution of the paper is mapping the results of the analysis to the aforementioned requirements, along with a comparison of the state of the art. Furthermore, this paper identifies and discusses the research gaps and challenges with regard to trust and CIDSs.",

author = "Emmanouil Vasilomanolakis and Habib, {Sheikh Mahbub} and Pavlos Milaszewicz and Malik, {Rabee Sohail} and Max M{\"u}hlh{\"a}user",

note = "Funding Information: This work has received funding from the European Union{\textquoteright}s Horizon 2020 Research and Innovation Program, PROTECTIVE, under Grant Agreement No 700071. Publisher Copyright: {\textcopyright} IFIP International Federation for Information Processing 2017.; 11th IFIP WG 11.11 International Conference on Trust Management, IFIPTM 2017 ; Conference date: 12-06-2017 Through 16-06-2017",

year = "2017",

doi = "10.1007/978-3-319-59171-1_8",

language = "English",

isbn = "9783319591704",

series = "I F I P Advances in Information and Communication Technology",

publisher = "Springer Publishing Company",

pages = "94--109",

editor = "Jan-Philipp Steghofer and Babak Esfandiari",

booktitle = "Trust Management XI - 11th IFIP WG 11.11 International Conference, IFIPTM 2017, Proceedings",

address = "United States",

}

Vasilomanolakis, E, Habib, SM, Milaszewicz, P, Malik, RS & Mühlhäuser, M 2017, Towards trust-aware collaborative intrusion detection: Challenges and solutions. in J-P Steghofer & B Esfandiari (eds), Trust Management XI - 11th IFIP WG 11.11 International Conference, IFIPTM 2017, Proceedings. Springer Publishing Company, I F I P Advances in Information and Communication Technology, vol. 505, pp. 94-109, 11th IFIP WG 11.11 International Conference on Trust Management, IFIPTM 2017, Gothenburg, Sweden, 12/06/2017. https://doi.org/10.1007/978-3-319-59171-1_8

Towards trust-aware collaborative intrusion detection: Challenges and solutions. / Vasilomanolakis, Emmanouil; Habib, Sheikh Mahbub; Milaszewicz, Pavlos et al.
Trust Management XI - 11th IFIP WG 11.11 International Conference, IFIPTM 2017, Proceedings. ed. / Jan-Philipp Steghofer; Babak Esfandiari. Springer Publishing Company, 2017. p. 94-109 (I F I P Advances in Information and Communication Technology, Vol. 505).

Research output: Contribution to book/anthology/report/conference proceeding › Article in proceeding › Research › peer-review

TY - GEN

T1 - Towards trust-aware collaborative intrusion detection

T2 - 11th IFIP WG 11.11 International Conference on Trust Management, IFIPTM 2017

AU - Vasilomanolakis, Emmanouil

AU - Habib, Sheikh Mahbub

AU - Milaszewicz, Pavlos

AU - Malik, Rabee Sohail

AU - Mühlhäuser, Max

N1 - Funding Information: This work has received funding from the European Union’s Horizon 2020 Research and Innovation Program, PROTECTIVE, under Grant Agreement No 700071. Publisher Copyright: © IFIP International Federation for Information Processing 2017.

PY - 2017

Y1 - 2017

N2 - Collaborative Intrusion Detection Systems (CIDSs) are an emerging field in cyber-security. In such an approach, multiple sensors collaborate by exchanging alert data with the goal of generating a complete picture of the monitored network. This can provide significant improvements in intrusion detection and especially in the identification of sophisticated attacks. However, the challenge of deciding to which extend a sensor can trust others, has not yet been holistically addressed in related work. In this paper, we firstly propose a set of requirements for reliable trust management in CIDSs. Afterwards, we carefully investigate the most dominant CIDS trust schemes. The main contribution of the paper is mapping the results of the analysis to the aforementioned requirements, along with a comparison of the state of the art. Furthermore, this paper identifies and discusses the research gaps and challenges with regard to trust and CIDSs.

AB - Collaborative Intrusion Detection Systems (CIDSs) are an emerging field in cyber-security. In such an approach, multiple sensors collaborate by exchanging alert data with the goal of generating a complete picture of the monitored network. This can provide significant improvements in intrusion detection and especially in the identification of sophisticated attacks. However, the challenge of deciding to which extend a sensor can trust others, has not yet been holistically addressed in related work. In this paper, we firstly propose a set of requirements for reliable trust management in CIDSs. Afterwards, we carefully investigate the most dominant CIDS trust schemes. The main contribution of the paper is mapping the results of the analysis to the aforementioned requirements, along with a comparison of the state of the art. Furthermore, this paper identifies and discusses the research gaps and challenges with regard to trust and CIDSs.

UR - http://www.scopus.com/inward/record.url?scp=85020498580&partnerID=8YFLogxK

U2 - 10.1007/978-3-319-59171-1_8

DO - 10.1007/978-3-319-59171-1_8

M3 - Article in proceeding

AN - SCOPUS:85020498580

SN - 9783319591704

T3 - I F I P Advances in Information and Communication Technology

SP - 94

EP - 109

BT - Trust Management XI - 11th IFIP WG 11.11 International Conference, IFIPTM 2017, Proceedings

A2 - Steghofer, Jan-Philipp

A2 - Esfandiari, Babak

PB - Springer Publishing Company

Y2 - 12 June 2017 through 16 June 2017

ER -

Vasilomanolakis E, Habib SM, Milaszewicz P, Malik RS, Mühlhäuser M. Towards trust-aware collaborative intrusion detection: Challenges and solutions. In Steghofer J-P, Esfandiari B, editors, Trust Management XI - 11th IFIP WG 11.11 International Conference, IFIPTM 2017, Proceedings. Springer Publishing Company. 2017. p. 94-109. (I F I P Advances in Information and Communication Technology, Vol. 505). doi: 10.1007/978-3-319-59171-1_8

Towards trust-aware collaborative intrusion detection: Challenges and solutions

Abstract

Conference

Bibliographical note

Access to Document

AUB Link

Other files and links

Fingerprint

Cite this