Feasibility Study of Port Scan Detection on Encrypted Data

被引：0

作者：

Chandrashekar, Prakruti ^{[1
]}

Dara, Sashank ^{[2
]}

Muralidhara, V. N. ^{[1
]}

机构：

[1] IIIT Bangalore, Bangalore, Karnataka, India

[2] IIIT Bangalore, Cisco Syst India Pvt Ltd, Bangalore, Karnataka, India

来源：

2015 IEEE INTERNATIONAL CONFERENCE ON CLOUD COMPUTING IN EMERGING MARKETS (CCEM) | 2016年

关键词：

Port scan; CryptDB; computational privacy; block ciphers; TRW; BLR;

D O I：

10.1109/CCEM.2015.18

中图分类号：

TP301 [理论、方法];

学科分类号：

081202 ;

摘要：

We explore the feasibility of implementing port scan detection on encrypted data to protect confidentiality of sensitive network data. We experiment with four popular Port Scan detection algorithms namely Classic Version (and its Time Variant), Threshold Random Walk(TRW), Bayesian Logistic Regression (BLR). We also provide experimental results on performance and storage of our query based implementation on network flow data. Our key observation is that for complex operations on encrypted data Onion-layered encryption system like CryptDB does not scale well.

引用

页码：109 / 112

页数：4

共 50 条

[1] Feasibility Study of Botnet Detection on Encrypted Data
Chandrashekar, Prakruti
Dara, Sashank
Muralidhara, V. N.
[J]. 2016 IEEE ANNUAL INDIA CONFERENCE (INDICON), 2016,
[2] Port Scan Detection
Gadge, Jayant
Patil, Anish Anand
[J]. PROCEEDINGS OF THE 2008 16TH INTERNATIONAL CONFERENCE ON NETWORKS, 2008, : 350 - 355
[3] A Study on Risk Index to Analyze the Impact of Port Scan and to Detect Slow Port Scan in Network Intrusion Detection
Park, Seongchul
Kim, Juntae
[J]. ADVANCED SCIENCE LETTERS, 2017, 23 (10) : 10329 - 10336
[4] Encrypted Traffic Detection: Beyond the Port Number Era
Doroud, Hossein
Alaswad, Ahmad
Dressler, Falko
[J]. PROCEEDINGS OF THE 2022 47TH IEEE CONFERENCE ON LOCAL COMPUTER NETWORKS (LCN 2022), 2022, : 198 - 204
[5] Connectionless port scan detection on the backbone
Sridharan, Avinash
Ye, Tao
Bhattacharyya, Supratik
[J]. 2006 IEEE INTERNATIONAL PERFORMANCE COMPUTING AND COMMUNICATIONS CONFERENCE, VOLS 1 AND 2, 2006, : 567 - +
[6] Interactive visualization for network and port scan detection
Muelder, C
Ma, KL
Bartoletti, T
[J]. RECENT ADVANCES IN INTRUSION DETECTION, 2006, 3858 : 265 - 283
[7] Reliable detection of compressed and encrypted data
Fabio De Gaspari
Dorjan Hitaj
Giulio Pagnotta
Lorenzo De Carli
Luigi V. Mancini
[J]. Neural Computing and Applications, 2022, 34 : 20379 - 20393
[8] Reliable detection of compressed and encrypted data
De Gaspari, Fabio
Hitaj, Dorjan
Pagnotta, Giulio
De Carli, Lorenzo
Mancini, Luigi, V
[J]. NEURAL COMPUTING & APPLICATIONS, 2022, 34 (22): : 20379 - 20393
[9] Scalable Double Filter Structure for Port Scan Detection
Kong, Shijin
He, Tao
Shao, Xiaoxin
An, Changqing
Li, Xing
[J]. 2006 IEEE INTERNATIONAL CONFERENCE ON COMMUNICATIONS, VOLS 1-12, 2006, : 2177 - 2182
[10] Spark-Based Port and Net Scan Detection
Affinito, Antonia
Botta, Alessio
Gallo, Luigi
Garofalo, Mauro
Ventre, Giorgio
[J]. PROCEEDINGS OF THE 35TH ANNUAL ACM SYMPOSIUM ON APPLIED COMPUTING (SAC'20), 2020, : 1172 - 1179

← 1 2 3 4 5 →