Article

Security system for encrypted environments (S2E2)

Authors:

Robert Koch,

Gabi Dreo RodosekAuthors Info & Claims

RAID'10: Proceedings of the 13th international conference on Recent advances in intrusion detection

Pages 505 - 507

Published: 15 September 2010 Publication History

Abstract

The percentage of encrypted network traffic increases steadily not only by virtual private networks of companies but also by protocols like SSH or SSL in the private sector. Traditional intrusion detection systems (IDS) are not able to cope with encrypted traffic. There are a few systems which are able to handle encrypted lines but none of them is applicable in general because of changed network protocols, a restricted application range (e.g., only able to find protocol-specific attacks) or very high false alarm rates. We propose a new IDS for non-intrusive, behavior-based intrusion- and extrusion detection in encrypted environments.

References

[1]

Lippmann, R., Webster, S., Stetson, D.: The Effect of Identifying Vulnerabilities and Patching Software on the Utility of Network Intrusion Detection. In: Wespi, A., Vigna, G., Deri, L. (eds.) RAID 2002. LNCS, vol. 2516, p. 307. Springer, Heidelberg (2002).

Digital Library

Google Scholar

[2]

Goh, V.T., Zimmermann, J., Looi, M.: Experimenting with an Intrusion Detection System for Encrypted Networks. Int. J. Business Intelligence and Data Mining 5(2), 172-191 (2010).

Digital Library

Google Scholar

Cited By

View all

Hellemons LHendriks LHofstede RSperotto ASadre RPras A(2012)SSHCureProceedings of the 6th IFIP WG 6.6 international autonomous infrastructure, management, and security conference on Dependable Networks and Services10.1007/978-3-642-30633-4_11(86-97)Online publication date: 4-Jun-2012
https://dl.acm.org/doi/10.1007/978-3-642-30633-4_11

Index Terms

Security system for encrypted environments (S2E2)
1. Networks
  1. Network services
    1. Network monitoring
2. Security and privacy

Index terms have been assigned to the content through auto-classification.

Recommendations

On Security Notions for Verifiably Encrypted Signature
IAS '09: Proceedings of the 2009 Fifth International Conference on Information Assurance and Security - Volume 02

First we revisit three (BGLS, MBGLS and GZZ) verifiably encrypted signature schemes \cite{BGLS03,H04,GZZ05}. We find that they are all not strong unforgeable. We remark that the notion of existential unforgeable is not sufficient for fair exchange ...
Detecting intrusions in encrypted control traffic
SEGS '13: Proceedings of the first ACM workshop on Smart energy grid security

Because of a lack of attack signatures and different forms of attacks, signature-based network intrusion detection systems currently provide insufficient protection for industrial control traffic. A combination of two anomaly detection approaches found ...
Detecting Encrypted Stepping-Stone Connections

Stepping-stone attacks are often used by network intruders to hide their identities. In a stepping-stone attack, attacking commands are sent indirectly to the victim through a chain of compromised hosts acting as "stepping stones." In defending against ...

Comments

Information & Contributors

Information

Published In

RAID'10: Proceedings of the 13th international conference on Recent advances in intrusion detection

September 2010

517 pages

ISBN:3642155111

Editors:
Somesh Jha
University of Wisconsin, Computer Sciences Department, Madison, WI
,
Robin Sommer
International Computer Science Institute, Berkeley, CA
,
Christian Kreibich
International Computer Science Institute, Berkeley, CA

Publisher

Springer-Verlag

Berlin, Heidelberg

Publication History

Published: 15 September 2010

Author Tags

Qualifiers

Article

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

1
Total Citations
View Citations
0
Total Downloads

Downloads (Last 12 months)0
Downloads (Last 6 weeks)0

Reflects downloads up to 17 Oct 2024

Other Metrics

View Author Metrics

Citations

Cited By

View all

Hellemons LHendriks LHofstede RSperotto ASadre RPras A(2012)SSHCureProceedings of the 6th IFIP WG 6.6 international autonomous infrastructure, management, and security conference on Dependable Networks and Services10.1007/978-3-642-30633-4_11(86-97)Online publication date: 4-Jun-2012
https://dl.acm.org/doi/10.1007/978-3-642-30633-4_11

View Options

View options

Get Access

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Abstract

References

Cited By

Index Terms

Recommendations

On Security Notions for Verifiably Encrypted Signature

Detecting intrusions in encrypted control traffic

Detecting Encrypted Stepping-Stone Connections

Comments

Information

Published In

Publisher

Publication History

Author Tags

Qualifiers

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

View options

Get Access

Login options

Full Access

Figures

Other

Share

Share this Publication link

Share on social media

Affiliations