EWIDS: an extended wireless IDS for metropolitan wireless networks based on kinematical analysis
Autor(a) principal: | |
---|---|
Data de Publicação: | 2011 |
Outros Autores: | , , , , |
Tipo de documento: | Artigo |
Idioma: | por |
Título da fonte: | Repositório Institucional do INMETRO |
Texto Completo: | http://hdl.handle.net/10926/1592 |
Resumo: | Wireless metropolitan area networks (WMANs) are well known to subject users or applications and to a vast gamma of security risks, hindering security critical distributed applications from employing this type of network as a communication infrastructure. Most existing approaches for addressing WMAN security issues use cryptography-based mechanisms or ad-hoc adapted versions of traditional Intrusion Detection Systems (IDS) for wired networks. While the first approach may lead to unfeasible computation costs for mobile hand-held devices, the second exhibits a high dependency on the freshness of their attack-signature databases, besides not considering any inherent characteristic of wireless networks, such as mobility. Thus, we present EWIDS (Extended Wireless IDS); a lightweight IDS specially designed for WMANs, which detects anomalous wireless device transmissions by employing kinematical analysis on the motion of users’ mobile devices. EWIDS also takes into account the decision information generated by transmitter fingerprint mechanisms used to identify wireless device. Both information is integrated through a fuzzy logic engine in order to increase the system performance. Realistic simulations based on WMAN scenarios revealed that our approach is very promising, since worst-case results have shown high correct alarm rates associated with low false positive rates. |
id |
INMT_2c1511aa2d7fbf765d36c29ff869757c |
---|---|
oai_identifier_str |
oai:xrepo01s.inmetro.gov.br:10926/1592 |
network_acronym_str |
INMT |
network_name_str |
Repositório Institucional do INMETRO |
repository_id_str |
|
spelling |
info:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/articleEWIDS: an extended wireless IDS for metropolitan wireless networks based on kinematical analysis20112012-04-24T13:44:20Z2012-04-24T13:44:20ZWireless metropolitan area networks (WMANs) are well known to subject users or applications and to a vast gamma of security risks, hindering security critical distributed applications from employing this type of network as a communication infrastructure. Most existing approaches for addressing WMAN security issues use cryptography-based mechanisms or ad-hoc adapted versions of traditional Intrusion Detection Systems (IDS) for wired networks. While the first approach may lead to unfeasible computation costs for mobile hand-held devices, the second exhibits a high dependency on the freshness of their attack-signature databases, besides not considering any inherent characteristic of wireless networks, such as mobility. Thus, we present EWIDS (Extended Wireless IDS); a lightweight IDS specially designed for WMANs, which detects anomalous wireless device transmissions by employing kinematical analysis on the motion of users’ mobile devices. EWIDS also takes into account the decision information generated by transmitter fingerprint mechanisms used to identify wireless device. Both information is integrated through a fuzzy logic engine in order to increase the system performance. Realistic simulations based on WMAN scenarios revealed that our approach is very promising, since worst-case results have shown high correct alarm rates associated with low false positive rates.11 p. : il.Submitted by Lívia Oliveira (livia.oliveira2@hotmail.com) on 2012-03-13T14:28:05Z No. of bitstreams: 1 JournalEwdis[2].pdf: 1338224 bytes, checksum: 413a415bc8a45d045390c47ac7cb4347 (MD5)Approved for entry into archive by Catarina Soares(cfsoares@inmetro.gov.br) on 2012-04-24T13:44:20Z (GMT) No. of bitstreams: 1 JournalEwdis[2].pdf: 1338224 bytes, checksum: 413a415bc8a45d045390c47ac7cb4347 (MD5)Made available in DSpace on 2012-04-24T13:44:20Z (GMT). No. of bitstreams: 1 JournalEwdis[2].pdf: 1338224 bytes, checksum: 413a415bc8a45d045390c47ac7cb4347 (MD5) Previous issue date: 2011porhttp://hdl.handle.net/10926/1592DMD_hdl_10926/1592PIRMEZ, Luci et al. EWIDS: an extended wireless IDS for metropolitan wireless networks based on kinematical analysis. International Journal of Computer Science and Network Security, v. 11, n. 7, 2011.Pirmez, LuciVianna, Nilson RochaCorreia, Reinaldo de BarrosCarmo, Luiz Fernando Rust da CostaFarias, Cláudio Miceli deSalmon, Hélio Mendesinfo:eu-repo/semantics/openAccessreponame:Repositório Institucional do INMETROinstname:Instituto Nacional de Metrologia, Qualidade e Tecnologia (INMETRO)instacron:INMETROPirmez_2011.pdfhttp://xrepo01s.inmetro.gov.br/bitstream/10926/1592/1/Pirmez_2011.pdfapplication/pdf1338224http://xrepo01s.inmetro.gov.br/bitstream/10926/1592/1/Pirmez_2011.pdf413a415bc8a45d045390c47ac7cb4347MD510926_1592_12024-06-10T15:24:50Zoai:xrepo01s.inmetro.gov.br:10926/1592Repositório de Publicaçõeshttp://repositorios.inmetro.gov.br/oai/requestopendoar:2012-11-01T12:29:20Repositório Institucional do INMETRO - Instituto Nacional de Metrologia, Qualidade e Tecnologia (INMETRO)false |
dc.title.none.fl_str_mv |
EWIDS: an extended wireless IDS for metropolitan wireless networks based on kinematical analysis |
title |
EWIDS: an extended wireless IDS for metropolitan wireless networks based on kinematical analysis |
spellingShingle |
EWIDS: an extended wireless IDS for metropolitan wireless networks based on kinematical analysis Pirmez, Luci |
title_short |
EWIDS: an extended wireless IDS for metropolitan wireless networks based on kinematical analysis |
title_full |
EWIDS: an extended wireless IDS for metropolitan wireless networks based on kinematical analysis |
title_fullStr |
EWIDS: an extended wireless IDS for metropolitan wireless networks based on kinematical analysis |
title_full_unstemmed |
EWIDS: an extended wireless IDS for metropolitan wireless networks based on kinematical analysis |
title_sort |
EWIDS: an extended wireless IDS for metropolitan wireless networks based on kinematical analysis |
author |
Pirmez, Luci |
author_facet |
Pirmez, Luci Vianna, Nilson Rocha Correia, Reinaldo de Barros Carmo, Luiz Fernando Rust da Costa Farias, Cláudio Miceli de Salmon, Hélio Mendes |
author_role |
author |
author2 |
Vianna, Nilson Rocha Correia, Reinaldo de Barros Carmo, Luiz Fernando Rust da Costa Farias, Cláudio Miceli de Salmon, Hélio Mendes |
author2_role |
author author author author author |
dc.contributor.author.fl_str_mv |
Pirmez, Luci Vianna, Nilson Rocha Correia, Reinaldo de Barros Carmo, Luiz Fernando Rust da Costa Farias, Cláudio Miceli de Salmon, Hélio Mendes |
description |
Wireless metropolitan area networks (WMANs) are well known to subject users or applications and to a vast gamma of security risks, hindering security critical distributed applications from employing this type of network as a communication infrastructure. Most existing approaches for addressing WMAN security issues use cryptography-based mechanisms or ad-hoc adapted versions of traditional Intrusion Detection Systems (IDS) for wired networks. While the first approach may lead to unfeasible computation costs for mobile hand-held devices, the second exhibits a high dependency on the freshness of their attack-signature databases, besides not considering any inherent characteristic of wireless networks, such as mobility. Thus, we present EWIDS (Extended Wireless IDS); a lightweight IDS specially designed for WMANs, which detects anomalous wireless device transmissions by employing kinematical analysis on the motion of users’ mobile devices. EWIDS also takes into account the decision information generated by transmitter fingerprint mechanisms used to identify wireless device. Both information is integrated through a fuzzy logic engine in order to increase the system performance. Realistic simulations based on WMAN scenarios revealed that our approach is very promising, since worst-case results have shown high correct alarm rates associated with low false positive rates. |
publishDate |
2011 |
dc.date.issued.fl_str_mv |
2011 |
dc.date.available.fl_str_mv |
2012-04-24T13:44:20Z |
dc.date.accessioned.fl_str_mv |
2012-04-24T13:44:20Z |
dc.type.status.fl_str_mv |
info:eu-repo/semantics/publishedVersion |
dc.type.driver.fl_str_mv |
info:eu-repo/semantics/article |
format |
article |
status_str |
publishedVersion |
dc.identifier.uri.fl_str_mv |
http://hdl.handle.net/10926/1592 DMD_hdl_10926/1592 |
dc.identifier.citation.fl_str_mv |
PIRMEZ, Luci et al. EWIDS: an extended wireless IDS for metropolitan wireless networks based on kinematical analysis. International Journal of Computer Science and Network Security, v. 11, n. 7, 2011. |
url |
http://hdl.handle.net/10926/1592 |
identifier_str_mv |
DMD_hdl_10926/1592 PIRMEZ, Luci et al. EWIDS: an extended wireless IDS for metropolitan wireless networks based on kinematical analysis. International Journal of Computer Science and Network Security, v. 11, n. 7, 2011. |
dc.language.iso.fl_str_mv |
por |
language |
por |
dc.rights.driver.fl_str_mv |
info:eu-repo/semantics/openAccess |
eu_rights_str_mv |
openAccess |
dc.format.bitstream.fl_str_mv |
application/pdf |
dc.source.none.fl_str_mv |
reponame:Repositório Institucional do INMETRO instname:Instituto Nacional de Metrologia, Qualidade e Tecnologia (INMETRO) instacron:INMETRO |
instname_str |
Instituto Nacional de Metrologia, Qualidade e Tecnologia (INMETRO) |
instacron_str |
INMETRO |
institution |
INMETRO |
reponame_str |
Repositório Institucional do INMETRO |
collection |
Repositório Institucional do INMETRO |
repository.name.fl_str_mv |
Repositório Institucional do INMETRO - Instituto Nacional de Metrologia, Qualidade e Tecnologia (INMETRO) |
repository.mail.fl_str_mv |
|
_version_ |
1801499966037819392 |