Abstract
To protect distributed network resources and assets, collaborative intrusion detection systems/networks (CIDSs/CIDNs) have been widely deployed in various organizations with the purpose of detecting any potential threats. While such systems and networks are usually vulnerable to insider attacks, some kinds of trust mechanisms should be integrated in a real-world application. Challenge-based trust mechanisms are one promising solution, which can measure the trustworthiness of a node by sending challenges to other nodes. In the literature, challenge-based CIDNs have proven to be robust against common insider attacks, but it may still be susceptible to advanced insider attacks. How to further improve the robustness of challenge-based CIDNs remains an issue. Motivated by the recently rapid development of blockchains, in this work, we aim to combine these two and provide a blockchained challenge-based CIDN framework. Our evaluation shows that blockchain technology has the potential to enhance the robustness of challenge-based CIDNs in the aspects of trust management (i.e., enhancing the detection of insider nodes) and alarm aggregation (i.e., identifying untruthful inputs). Copyright © 2019 Springer Nature Switzerland AG.
Original language | English |
---|---|
Title of host publication | Applied cryptography and network security workshops: ACNS 2019 Satellite Workshops, SiMLA, Cloud S&P, AIBlock, and AIoTS, Bogota, Colombia, June 5–7, 2019, proceedings |
Editors | Jianying ZHOU, Robert DENG, Zhou LI, Suryadipta MAJUMDAR, Weizhi MENG, Lingyu WANG, Kehuan ZHANG |
Place of Publication | Cham |
Publisher | Springer |
Pages | 122-139 |
ISBN (Electronic) | 9783030297299 |
ISBN (Print) | 9783030297282 |
DOIs | |
Publication status | Published - 2019 |
Citation
Li, W., Wang, Y., Li, J., & Au, M. H. (2019). Towards blockchained challenge-based collaborative intrusion detection. In J. Zhou, R. Deng, Z. Li, S. Majumdar, W. Meng, L. Wang, & K. Zhang (Eds.), Applied cryptography and network security workshops: ACNS 2019 Satellite Workshops, SiMLA, Cloud S&P, AIBlock, and AIoTS, Bogota, Colombia, June 5–7, 2019, proceedings (pp. 122-139). Springer. https://doi.org/10.1007/978-3-030-29729-9_7Keywords
- Intrusion detection
- Collaborative network
- Insider attack
- Blockchain technology
- Challenge-based trust mechanism