Publicação
A scalable, real-time packet capturing solution
| Resumo: | The evolution of technology and the increasing connectivity between devices lead to an increased risk of cyberattacks. Good protection systems, such as Intrusion Detection System (IDS) and Intrusion Prevention System (IPS), are essential in trying to prevent, detect and counter most of the attacks. However, the increasing creativity and type of attacks raise the need for more resources and processing power for the protection systems which, in turn, requires horizontal scalability to keep up with the massive companies’ network infrastructure and with the complexity of attacks. Technologies like machine learning, show promising results and can be of added value in the detection and prevention of attacks in real-time. But good algorithms and tools are not enough. They require reliable and solid datasets to be able to effectively train the protection systems. The development of a good dataset requires horizontalscalable, robust, modular and fault-tolerance systems, so that the analyses may be done also in real-time. This paper describes an architecture for horizontal-scaling capture architecture, able to collect packets from multiple sources and prepared for real-time analysis. It depends on multiple modular nodes with specific roles to support different algorithms and tools. |
|---|---|
| Autores principais: | Oliveira, Rafael Cardoso de |
| Outros Autores: | Almeida, João P.; Praça, Isabel; Lopes, Rui Pedro; Pedrosa, Tiago |
| Assunto: | Packet capture Packet storage Distributed system Machine learning |
| Ano: | 2021 |
| País: | Portugal |
| Tipo de documento: | comunicação em conferência |
| Tipo de acesso: | acesso restrito |
| Instituição associada: | Instituto Politécnico de Bragança |
| Idioma: | inglês |
| Origem: | Biblioteca Digital do IPB |
| _version_ | 1867172975186280448 |
|---|---|
| author | Oliveira, Rafael Cardoso de |
| author2 | Almeida, João P. Praça, Isabel Lopes, Rui Pedro Pedrosa, Tiago |
| author2_role | author author author author |
| author_facet | Oliveira, Rafael Cardoso de Almeida, João P. Praça, Isabel Lopes, Rui Pedro Pedrosa, Tiago |
| author_role | author |
| contributor_name_str_mv | Biblioteca Digital do IPB |
| country_str | PT |
| creators_json_txt | [{\"Person.name\":\"Oliveira, Rafael Cardoso de\",\"Person.identifier.orcid\":\"0000-0003-4997-4757\"},{\"Person.name\":\"Almeida, João P.\",\"Person.identifier.orcid\":\"0000-0002-1286-2527\"},{\"Person.name\":\"Praça, Isabel\"},{\"Person.name\":\"Lopes, Rui Pedro\",\"Person.identifier.orcid\":\"0000-0002-9170-5078\"},{\"Person.name\":\"Pedrosa, Tiago\",\"Person.identifier.orcid\":\"0000-0003-4873-2705\"}] |
| datacite.contributors.contributor.contributorName.fl_str_mv | Biblioteca Digital do IPB |
| datacite.creators.creator.creatorName.fl_str_mv | Oliveira, Rafael Cardoso de Almeida, João P. Praça, Isabel Lopes, Rui Pedro Pedrosa, Tiago |
| datacite.date.Accepted.fl_str_mv | 2021-01-01T00:00:00Z |
| datacite.date.available.fl_str_mv | 2022-04-05T08:31:51Z |
| datacite.date.embargoed.fl_str_mv | 2022-04-05T08:31:51Z |
| datacite.rights.fl_str_mv | http://purl.org/coar/access_right/c_16ec |
| datacite.subjects.subject.fl_str_mv | Packet capture Packet storage Distributed system Machine learning |
| datacite.titles.title.fl_str_mv | A scalable, real-time packet capturing solution |
| dc.contributor.none.fl_str_mv | Biblioteca Digital do IPB |
| dc.creator.none.fl_str_mv | Oliveira, Rafael Cardoso de Almeida, João P. Praça, Isabel Lopes, Rui Pedro Pedrosa, Tiago |
| dc.date.Accepted.fl_str_mv | 2021-01-01T00:00:00Z |
| dc.date.available.fl_str_mv | 2022-04-05T08:31:51Z |
| dc.date.embargoed.fl_str_mv | 2022-04-05T08:31:51Z |
| dc.format.none.fl_str_mv | application/pdf |
| dc.identifier.none.fl_str_mv | http://hdl.handle.net/10198/25331 |
| dc.language.none.fl_str_mv | eng |
| dc.publisher.none.fl_str_mv | Springer Nature |
| dc.rights.cclincense.fl_str_mv | http://creativecommons.org/licenses/by/4.0/ |
| dc.rights.none.fl_str_mv | http://purl.org/coar/access_right/c_16ec |
| dc.subject.none.fl_str_mv | Packet capture Packet storage Distributed system Machine learning |
| dc.title.fl_str_mv | A scalable, real-time packet capturing solution |
| dc.type.none.fl_str_mv | http://purl.org/coar/resource_type/c_5794 |
| description | The evolution of technology and the increasing connectivity between devices lead to an increased risk of cyberattacks. Good protection systems, such as Intrusion Detection System (IDS) and Intrusion Prevention System (IPS), are essential in trying to prevent, detect and counter most of the attacks. However, the increasing creativity and type of attacks raise the need for more resources and processing power for the protection systems which, in turn, requires horizontal scalability to keep up with the massive companies’ network infrastructure and with the complexity of attacks. Technologies like machine learning, show promising results and can be of added value in the detection and prevention of attacks in real-time. But good algorithms and tools are not enough. They require reliable and solid datasets to be able to effectively train the protection systems. The development of a good dataset requires horizontalscalable, robust, modular and fault-tolerance systems, so that the analyses may be done also in real-time. This paper describes an architecture for horizontal-scaling capture architecture, able to collect packets from multiple sources and prepared for real-time analysis. It depends on multiple modular nodes with specific roles to support different algorithms and tools. |
| dirty | 0 |
| eu_rights_str_mv | restrictedAccess |
| format | conferencePaper |
| fulltext.url.fl_str_mv | https://bibliotecadigital.ipb.pt/bitstreams/87d58ed1-881a-4b43-8ee7-32465be5aad2/download |
| id | ipb_ae902b59596b462c8caf760f0c031ff2 |
| identifier.url.fl_str_mv | http://hdl.handle.net/10198/25331 |
| instacron_str | ipb |
| institution | Instituto Politécnico de Bragança |
| instname_str | Instituto Politécnico de Bragança |
| language | eng |
| network_acronym_str | ipb |
| network_name_str | Biblioteca Digital do IPB |
| oai_identifier_str | oai:bibliotecadigital.ipb.pt:10198/25331 |
| organization_str_mv | urn:organizationAcronym:ipb |
| person_str_mv | Oliveira, Rafael Cardoso de Oliveira, Rafael Cardoso de https://www.ciencia-id.pt/F71B-6628-2D66 F71B-6628-2D66 http://orcid.org/0000-0003-4997-4757 0000-0003-4997-4757 Almeida, João P. Almeida, João P. https://www.ciencia-id.pt/1C14-D6B1-6A78 1C14-D6B1-6A78 http://orcid.org/0000-0002-1286-2527 0000-0002-1286-2527 Praça, Isabel Lopes, Rui Pedro Lopes, Rui Pedro https://www.ciencia-id.pt/8E14-54E4-4DB5 8E14-54E4-4DB5 http://orcid.org/0000-0002-9170-5078 0000-0002-9170-5078 Pedrosa, Tiago Pedrosa, Tiago https://www.ciencia-id.pt/B81E-0583-AEDF B81E-0583-AEDF http://orcid.org/0000-0003-4873-2705 0000-0003-4873-2705 |
| publishDate | 2021 |
| publisher.none.fl_str_mv | Springer Nature |
| reponame_str | Biblioteca Digital do IPB |
| repository_id_str | urn:repositoryAcronym:ipb |
| service_str_mv | urn:repositoryAcronym:ipb |
| spelling | engSpringer Naturept_PTThe evolution of technology and the increasing connectivity between devices lead to an increased risk of cyberattacks. Good protection systems, such as Intrusion Detection System (IDS) and Intrusion Prevention System (IPS), are essential in trying to prevent, detect and counter most of the attacks. However, the increasing creativity and type of attacks raise the need for more resources and processing power for the protection systems which, in turn, requires horizontal scalability to keep up with the massive companies’ network infrastructure and with the complexity of attacks. Technologies like machine learning, show promising results and can be of added value in the detection and prevention of attacks in real-time. But good algorithms and tools are not enough. They require reliable and solid datasets to be able to effectively train the protection systems. The development of a good dataset requires horizontalscalable, robust, modular and fault-tolerance systems, so that the analyses may be done also in real-time. This paper describes an architecture for horizontal-scaling capture architecture, able to collect packets from multiple sources and prepared for real-time analysis. It depends on multiple modular nodes with specific roles to support different algorithms and tools.application/pdfpt_PTA scalable, real-time packet capturing solutionPersonalOliveira, Rafael Cardoso deDSpacehttp://dspace.org/items/06566b21-6c48-40b6-927f-011af56875a7DSpacehttp://dspace.org/items/06566b21-6c48-40b6-927f-011af56875a7OliveiraRafael Cardoso deCiência IDhttps://www.ciencia-id.ptF71B-6628-2D66ORCIDhttp://orcid.org0000-0003-4997-4757Scopus Author IDhttps://www.scopus.com57387127100PersonalAlmeida, João P.DSpacehttp://dspace.org/items/d51506e1-376c-4c70-b68b-f527b54440d2DSpacehttp://dspace.org/items/d51506e1-376c-4c70-b68b-f527b54440d2AlmeidaJoão P.Ciência IDhttps://www.ciencia-id.pt1C14-D6B1-6A78ORCIDhttp://orcid.org0000-0002-1286-2527Researcher IDhttps://www.researcherid.comN-8243-2013Scopus Author IDhttps://www.scopus.com54956738400Praça, IsabelPersonalLopes, Rui PedroDSpacehttp://dspace.org/items/e1e64423-0ec8-46ee-be96-33205c7c98a9DSpacehttp://dspace.org/items/e1e64423-0ec8-46ee-be96-33205c7c98a9LopesRui PedroCiência IDhttps://www.ciencia-id.pt8E14-54E4-4DB5ORCIDhttp://orcid.org0000-0002-9170-5078PersonalPedrosa, TiagoDSpacehttp://dspace.org/items/fee2835e-2230-4414-a58e-bcba895d1f0bDSpacehttp://dspace.org/items/fee2835e-2230-4414-a58e-bcba895d1f0bPedrosaTiagoCiência IDhttps://www.ciencia-id.ptB81E-0583-AEDFORCIDhttp://orcid.org0000-0003-4873-2705Researcher IDhttps://www.researcherid.comG-2249-2011Scopus Author IDhttps://www.scopus.com35318153700HostingInstitutionOrganizationalBiblioteca Digital do IPBe-mailmailto:dspace@ipb.ptdspace@ipb.ptISBNIsPartOf978-3-030-91884-2DOIIsPartOf10.1007/978-3-030-91885-9_462022-04-05T08:31:51Z20212021-01-01T00:00:00ZHandlehttp://hdl.handle.net/10198/25331http://purl.org/coar/access_right/c_16ecrestricted accessPacket capturePacket storageDistributed systemMachine learning1608788 bytesother research producthttp://purl.org/coar/resource_type/c_5794conference paper2021http://creativecommons.org/licenses/by/4.0/http://purl.org/coar/access_right/c_16ecapplication/pdffulltexthttps://bibliotecadigital.ipb.pt/bitstreams/87d58ed1-881a-4b43-8ee7-32465be5aad2/downloadOptimization, learning algorithms and applications: first International Conference, OL2A 20211488630637 |
| spellingShingle | A scalable, real-time packet capturing solution Oliveira, Rafael Cardoso de Packet capture Packet storage Distributed system Machine learning |
| status | SINGLETON |
| subject.fl_str_mv | Packet capture Packet storage Distributed system Machine learning |
| title | A scalable, real-time packet capturing solution |
| title_full | A scalable, real-time packet capturing solution |
| title_fullStr | A scalable, real-time packet capturing solution |
| title_full_unstemmed | A scalable, real-time packet capturing solution |
| title_short | A scalable, real-time packet capturing solution |
| title_sort | A scalable, real-time packet capturing solution |
| topic | Packet capture Packet storage Distributed system Machine learning |
| topic_facet | Packet capture Packet storage Distributed system Machine learning |
| url | http://hdl.handle.net/10198/25331 |
| visible | 1 |