| Name: | Description: | Size: | Format: | |
|---|---|---|---|---|
| 1.53 MB | Adobe PDF |
Advisor(s)
Abstract(s)
The evolution of technology and the increasing connectivity
between devices lead to an increased risk of cyberattacks. Good protection
systems, such as Intrusion Detection System (IDS) and Intrusion
Prevention System (IPS), are essential in trying to prevent, detect and
counter most of the attacks. However, the increasing creativity and type
of attacks raise the need for more resources and processing power for
the protection systems which, in turn, requires horizontal scalability to
keep up with the massive companies’ network infrastructure and with the
complexity of attacks. Technologies like machine learning, show promising
results and can be of added value in the detection and prevention of
attacks in real-time. But good algorithms and tools are not enough. They
require reliable and solid datasets to be able to effectively train the protection
systems. The development of a good dataset requires horizontalscalable,
robust, modular and fault-tolerance systems, so that the analyses
may be done also in real-time. This paper describes an architecture
for horizontal-scaling capture architecture, able to collect packets from
multiple sources and prepared for real-time analysis. It depends on multiple
modular nodes with specific roles to support different algorithms
and tools.
Description
Keywords
Packet capture Packet storage Distributed system Machine learning
Citation
Oliveira, Rafael Cardoso de; Almeida, João P.; Praça, Isabel; Lopes, Rui Pedro; Pedrosa, Tiago (2021). A scalable, real-time packet capturing solution. In Pereira, Ana I.; Fernandes, Florbela P.; Coelho, João Paulo; Teixeira, João Paulo; Pacheco, Maria F.; Alves, Paulo; Lopes, Rui Pedro (Eds.) Optimization, learning algorithms and applications: first International Conference, OL2A 2021. Cham: Springer Nature. p. 630-637. ISBN 978-3-030-91884-2
Publisher
Springer Nature