SSHCure: A Flow-Based SSH Intrusion Detection System

被引：0

作者：

Hellemons, Laurens ^{[1
]}

Hendriks, Luuk ^{[1
]}

Hofstede, Rick ^{[1
]}

Sperotto, Anna ^{[1
]}

Sadre, Ramin ^{[1
]}

Pras, Aiko ^{[1
]}

机构：

[1] Univ Twente, Ctr Telemat & Informat Technol CTIT, Fac Elect Engn Math & Comp Sci EEMCS, Design & Anal Commun Syst DACS, NL-7500 AE Enschede, Netherlands

来源：

DEPENDABLE NETWORKS AND SERVICES | 2012年 / 7279卷

关键词：

D O I：

暂无

中图分类号：

TP31 [计算机软件];

学科分类号：

081202 ; 0835 ;

摘要：

SSH attacks are a main area of concern for network managers, due to the danger associated with a successful compromise. Detecting these attacks, and possibly compromised victims, is therefore a crucial activity. Most existing network intrusion detection systems designed for this purpose rely on the inspection of individual packets and, hence, do not scale to today's high-speed networks. To overcome this issue, this paper proposes SSHCure, a flow-based intrusion detection system for SSH attacks. It employs an efficient algorithm for the real-time detection of ongoing attacks and allows identification of compromised attack targets. A prototype implementation of the algorithm, including a graphical user interface, is implemented as a plugin for the popular NfSen monitoring tool. Finally, the detection performance of the system is validated with empirical traffic data.

引用

页码：86 / 97

页数：12

共 50 条

[31] Flow-based intrusion detection system in Vehicular Ad hoc Network using context-aware feature extraction
Shams, Erfan A.
Rizaner, Ahmet
Ulusoy, Ali Hakan
VEHICULAR COMMUNICATIONS, 2023, 41
[32] DLMHS: Flow-based intrusion detection system using deep learning neural network and meta-heuristic scale
Jyothsna, V
Prasad, Munivara K.
GopiChand, G.
Bhavani, Durga D.
INTERNATIONAL JOURNAL OF COMMUNICATION SYSTEMS, 2022, 35 (10)
[33] A Flow-Based Network Intrusion Detection System for High-Speed Networks Using Meta-heuristic Scale
Jyothsna, V.
Mukesh, D.
Sreedhar, A. N.
COMPUTING AND NETWORK SUSTAINABILITY, 2019, 75
[34] Ensemble of Bio-inspired Algorithm with Statistical Measures for Feature Selection to Design a Flow-Based Intrusion Detection System
Adhao, Rahul B.
Pachghare, Vinod
INTERNATIONAL JOURNAL OF NEXT-GENERATION COMPUTING, 2022, 13 (04): : 901 - 912
[35] A two-stage flow-based intrusion detection model for next-generation networks
Umer, Muhammad Fahad
Sher, Muhammad
Bi, Yaxin
PLOS ONE, 2018, 13 (01):
[36] On High-Speed Flow-Based Intrusion Detection Using Snort-Compatible Signatures
Erlacher, Felix
Dressler, Falko
IEEE TRANSACTIONS ON DEPENDABLE AND SECURE COMPUTING, 2022, 19 (01) : 495 - 506
[37] An SSH Honeypot Architecture Using Port Knocking and Intrusion Detection System
Arifianto, Ridho Maulana
Sukarno, Parman
Jadied, Erwid Musthofa
2018 6TH INTERNATIONAL CONFERENCE ON INFORMATION AND COMMUNICATION TECHNOLOGY (ICOICT), 2018, : 409 - 415
[38] A Deep Transfer Learning Approach for Flow-Based Intrusion Detection in SDN-Enabled Network
Phan The Duy
Nghi Hoang Khoa
Hoang Hiep
Nguyen Ba Tuan
Hien Do Hoang
Do Thi Thu Hien
Van-Hau Pham
NEW TRENDS IN INTELLIGENT SOFTWARE METHODOLOGIES, TOOLS AND TECHNIQUES, 2021, 337 : 327 - 339
[39] Flow-based intrusion detection on software-defined networks: a multivariate time series anomaly detection approach
Zavrak, Sultan
Iskefiyeli, Murat
NEURAL COMPUTING & APPLICATIONS, 2023, 35 (16): : 12175 - 12193
[40] Flow-based intrusion detection on software-defined networks: a multivariate time series anomaly detection approach
Sultan Zavrak
Murat Iskefiyeli
Neural Computing and Applications, 2023, 35 : 12175 - 12193

← 1 2 3 4 5 →