Publicação

A scalable, real-time packet capturing solution

Ver documento

Detalhes bibliográficos
Resumo:The evolution of technology and the increasing connectivity between devices lead to an increased risk of cyberattacks. Good protection systems, such as Intrusion Detection System (IDS) and Intrusion Prevention System (IPS), are essential in trying to prevent, detect and counter most of the attacks. However, the increasing creativity and type of attacks raise the need for more resources and processing power for the protection systems which, in turn, requires horizontal scalability to keep up with the massive companies’ network infrastructure and with the complexity of attacks. Technologies like machine learning, show promising results and can be of added value in the detection and prevention of attacks in real-time. But good algorithms and tools are not enough. They require reliable and solid datasets to be able to effectively train the protection systems. The development of a good dataset requires horizontalscalable, robust, modular and fault-tolerance systems, so that the analyses may be done also in real-time. This paper describes an architecture for horizontal-scaling capture architecture, able to collect packets from multiple sources and prepared for real-time analysis. It depends on multiple modular nodes with specific roles to support different algorithms and tools.
Autores principais:Oliveira, Rafael Cardoso de
Outros Autores:Almeida, João P.; Praça, Isabel; Lopes, Rui Pedro; Pedrosa, Tiago
Assunto:Packet capture Packet storage Distributed system Machine learning
Ano:2021
País:Portugal
Tipo de documento:comunicação em conferência
Tipo de acesso:acesso restrito
Instituição associada:Instituto Politécnico de Bragança
Idioma:inglês
Origem:Biblioteca Digital do IPB
_version_ 1867172975186280448
author Oliveira, Rafael Cardoso de
author2 Almeida, João P.
Praça, Isabel
Lopes, Rui Pedro
Pedrosa, Tiago
author2_role author
author
author
author
author_facet Oliveira, Rafael Cardoso de
Almeida, João P.
Praça, Isabel
Lopes, Rui Pedro
Pedrosa, Tiago
author_role author
contributor_name_str_mv Biblioteca Digital do IPB
country_str PT
creators_json_txt [{\"Person.name\":\"Oliveira, Rafael Cardoso de\",\"Person.identifier.orcid\":\"0000-0003-4997-4757\"},{\"Person.name\":\"Almeida, João P.\",\"Person.identifier.orcid\":\"0000-0002-1286-2527\"},{\"Person.name\":\"Praça, Isabel\"},{\"Person.name\":\"Lopes, Rui Pedro\",\"Person.identifier.orcid\":\"0000-0002-9170-5078\"},{\"Person.name\":\"Pedrosa, Tiago\",\"Person.identifier.orcid\":\"0000-0003-4873-2705\"}]
datacite.contributors.contributor.contributorName.fl_str_mv Biblioteca Digital do IPB
datacite.creators.creator.creatorName.fl_str_mv Oliveira, Rafael Cardoso de
Almeida, João P.
Praça, Isabel
Lopes, Rui Pedro
Pedrosa, Tiago
datacite.date.Accepted.fl_str_mv 2021-01-01T00:00:00Z
datacite.date.available.fl_str_mv 2022-04-05T08:31:51Z
datacite.date.embargoed.fl_str_mv 2022-04-05T08:31:51Z
datacite.rights.fl_str_mv http://purl.org/coar/access_right/c_16ec
datacite.subjects.subject.fl_str_mv Packet capture
Packet storage
Distributed system
Machine learning
datacite.titles.title.fl_str_mv A scalable, real-time packet capturing solution
dc.contributor.none.fl_str_mv Biblioteca Digital do IPB
dc.creator.none.fl_str_mv Oliveira, Rafael Cardoso de
Almeida, João P.
Praça, Isabel
Lopes, Rui Pedro
Pedrosa, Tiago
dc.date.Accepted.fl_str_mv 2021-01-01T00:00:00Z
dc.date.available.fl_str_mv 2022-04-05T08:31:51Z
dc.date.embargoed.fl_str_mv 2022-04-05T08:31:51Z
dc.format.none.fl_str_mv application/pdf
dc.identifier.none.fl_str_mv http://hdl.handle.net/10198/25331
dc.language.none.fl_str_mv eng
dc.publisher.none.fl_str_mv Springer Nature
dc.rights.cclincense.fl_str_mv http://creativecommons.org/licenses/by/4.0/
dc.rights.none.fl_str_mv http://purl.org/coar/access_right/c_16ec
dc.subject.none.fl_str_mv Packet capture
Packet storage
Distributed system
Machine learning
dc.title.fl_str_mv A scalable, real-time packet capturing solution
dc.type.none.fl_str_mv http://purl.org/coar/resource_type/c_5794
description The evolution of technology and the increasing connectivity between devices lead to an increased risk of cyberattacks. Good protection systems, such as Intrusion Detection System (IDS) and Intrusion Prevention System (IPS), are essential in trying to prevent, detect and counter most of the attacks. However, the increasing creativity and type of attacks raise the need for more resources and processing power for the protection systems which, in turn, requires horizontal scalability to keep up with the massive companies’ network infrastructure and with the complexity of attacks. Technologies like machine learning, show promising results and can be of added value in the detection and prevention of attacks in real-time. But good algorithms and tools are not enough. They require reliable and solid datasets to be able to effectively train the protection systems. The development of a good dataset requires horizontalscalable, robust, modular and fault-tolerance systems, so that the analyses may be done also in real-time. This paper describes an architecture for horizontal-scaling capture architecture, able to collect packets from multiple sources and prepared for real-time analysis. It depends on multiple modular nodes with specific roles to support different algorithms and tools.
dirty 0
eu_rights_str_mv restrictedAccess
format conferencePaper
fulltext.url.fl_str_mv https://bibliotecadigital.ipb.pt/bitstreams/87d58ed1-881a-4b43-8ee7-32465be5aad2/download
id ipb_ae902b59596b462c8caf760f0c031ff2
identifier.url.fl_str_mv http://hdl.handle.net/10198/25331
instacron_str ipb
institution Instituto Politécnico de Bragança
instname_str Instituto Politécnico de Bragança
language eng
network_acronym_str ipb
network_name_str Biblioteca Digital do IPB
oai_identifier_str oai:bibliotecadigital.ipb.pt:10198/25331
organization_str_mv urn:organizationAcronym:ipb
person_str_mv Oliveira, Rafael Cardoso de
Oliveira, Rafael Cardoso de
https://www.ciencia-id.pt/F71B-6628-2D66
F71B-6628-2D66
http://orcid.org/0000-0003-4997-4757
0000-0003-4997-4757
Almeida, João P.
Almeida, João P.
https://www.ciencia-id.pt/1C14-D6B1-6A78
1C14-D6B1-6A78
http://orcid.org/0000-0002-1286-2527
0000-0002-1286-2527
Praça, Isabel
Lopes, Rui Pedro
Lopes, Rui Pedro
https://www.ciencia-id.pt/8E14-54E4-4DB5
8E14-54E4-4DB5
http://orcid.org/0000-0002-9170-5078
0000-0002-9170-5078
Pedrosa, Tiago
Pedrosa, Tiago
https://www.ciencia-id.pt/B81E-0583-AEDF
B81E-0583-AEDF
http://orcid.org/0000-0003-4873-2705
0000-0003-4873-2705
publishDate 2021
publisher.none.fl_str_mv Springer Nature
reponame_str Biblioteca Digital do IPB
repository_id_str urn:repositoryAcronym:ipb
service_str_mv urn:repositoryAcronym:ipb
spelling engSpringer Naturept_PTThe evolution of technology and the increasing connectivity between devices lead to an increased risk of cyberattacks. Good protection systems, such as Intrusion Detection System (IDS) and Intrusion Prevention System (IPS), are essential in trying to prevent, detect and counter most of the attacks. However, the increasing creativity and type of attacks raise the need for more resources and processing power for the protection systems which, in turn, requires horizontal scalability to keep up with the massive companies’ network infrastructure and with the complexity of attacks. Technologies like machine learning, show promising results and can be of added value in the detection and prevention of attacks in real-time. But good algorithms and tools are not enough. They require reliable and solid datasets to be able to effectively train the protection systems. The development of a good dataset requires horizontalscalable, robust, modular and fault-tolerance systems, so that the analyses may be done also in real-time. This paper describes an architecture for horizontal-scaling capture architecture, able to collect packets from multiple sources and prepared for real-time analysis. It depends on multiple modular nodes with specific roles to support different algorithms and tools.application/pdfpt_PTA scalable, real-time packet capturing solutionPersonalOliveira, Rafael Cardoso deDSpacehttp://dspace.org/items/06566b21-6c48-40b6-927f-011af56875a7DSpacehttp://dspace.org/items/06566b21-6c48-40b6-927f-011af56875a7OliveiraRafael Cardoso deCiência IDhttps://www.ciencia-id.ptF71B-6628-2D66ORCIDhttp://orcid.org0000-0003-4997-4757Scopus Author IDhttps://www.scopus.com57387127100PersonalAlmeida, João P.DSpacehttp://dspace.org/items/d51506e1-376c-4c70-b68b-f527b54440d2DSpacehttp://dspace.org/items/d51506e1-376c-4c70-b68b-f527b54440d2AlmeidaJoão P.Ciência IDhttps://www.ciencia-id.pt1C14-D6B1-6A78ORCIDhttp://orcid.org0000-0002-1286-2527Researcher IDhttps://www.researcherid.comN-8243-2013Scopus Author IDhttps://www.scopus.com54956738400Praça, IsabelPersonalLopes, Rui PedroDSpacehttp://dspace.org/items/e1e64423-0ec8-46ee-be96-33205c7c98a9DSpacehttp://dspace.org/items/e1e64423-0ec8-46ee-be96-33205c7c98a9LopesRui PedroCiência IDhttps://www.ciencia-id.pt8E14-54E4-4DB5ORCIDhttp://orcid.org0000-0002-9170-5078PersonalPedrosa, TiagoDSpacehttp://dspace.org/items/fee2835e-2230-4414-a58e-bcba895d1f0bDSpacehttp://dspace.org/items/fee2835e-2230-4414-a58e-bcba895d1f0bPedrosaTiagoCiência IDhttps://www.ciencia-id.ptB81E-0583-AEDFORCIDhttp://orcid.org0000-0003-4873-2705Researcher IDhttps://www.researcherid.comG-2249-2011Scopus Author IDhttps://www.scopus.com35318153700HostingInstitutionOrganizationalBiblioteca Digital do IPBe-mailmailto:dspace@ipb.ptdspace@ipb.ptISBNIsPartOf978-3-030-91884-2DOIIsPartOf10.1007/978-3-030-91885-9_462022-04-05T08:31:51Z20212021-01-01T00:00:00ZHandlehttp://hdl.handle.net/10198/25331http://purl.org/coar/access_right/c_16ecrestricted accessPacket capturePacket storageDistributed systemMachine learning1608788 bytesother research producthttp://purl.org/coar/resource_type/c_5794conference paper2021http://creativecommons.org/licenses/by/4.0/http://purl.org/coar/access_right/c_16ecapplication/pdffulltexthttps://bibliotecadigital.ipb.pt/bitstreams/87d58ed1-881a-4b43-8ee7-32465be5aad2/downloadOptimization, learning algorithms and applications: first International Conference, OL2A 20211488630637
spellingShingle A scalable, real-time packet capturing solution
Oliveira, Rafael Cardoso de
Packet capture
Packet storage
Distributed system
Machine learning
status SINGLETON
subject.fl_str_mv Packet capture
Packet storage
Distributed system
Machine learning
title A scalable, real-time packet capturing solution
title_full A scalable, real-time packet capturing solution
title_fullStr A scalable, real-time packet capturing solution
title_full_unstemmed A scalable, real-time packet capturing solution
title_short A scalable, real-time packet capturing solution
title_sort A scalable, real-time packet capturing solution
topic Packet capture
Packet storage
Distributed system
Machine learning
topic_facet Packet capture
Packet storage
Distributed system
Machine learning
url http://hdl.handle.net/10198/25331
visible 1