Skip to main content
SpringerLink
Log in

Integrated “Mixed” Networks Security Monitoring — A Proposed Framework

  • Conference paper
  • First Online:
Intelligence and Security Informatics (ISI 2003)

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 2665))

Included in the following conference series:

Abstract

Our primary concept is to develop a systemic security view of integrated, independent systems. We present a design for the monitoring of the security of an integrated public safety “mixed” network. The Capital Wireless Integrated Network (CapWIN) is such a system, consisting of a diverse and disparate mixture of public and private networks that share information in order to provide public safety services for metropolitan Washington, DC [1]. It is imperative that the members of CapWIN be aware of the status of the other participants in order to anticipate security events. As of now, there are few means for which the members can obtain real-time information pertaining to the security status of all other parties. Our system is designed to use data fusion to provide system monitoring and feedback to all members. The system is state-based and is designed to be 1) easy to implement, 2) require minimal bandwidth, and 3) be customizable according to the preferences of each member of the network. We present an overview of the system, an analytical model for a state-based description, and system mock-ups.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. CapWIN. Roles, 2002. http://www.capwinproject.com/ . Accessed July 23, 2002.

  2. Ghosh, S. Principles of Secure Network Systems Design. Springer, New York, 2002. ITS America, What is ITS?, 2002. http://www.itsa.org/whatits.html . Accessed July 23, 2002.

    MATH  Google Scholar 

  3. Schmuacher, H., and Ghosh, S. A Fundamental Framework for Network Security. Journal of Network and Compute Applications, Vol. 20, 1997, pp. 305–322.

    Article  Google Scholar 

  4. Curtin, Matt. and Ranum Marcus. “Internet Firewalls: FAQ”. http://www.internethack.net\pubs\fwfaq, 2000

  5. Sherif, Joseph and Dearmond, Tommy G. Intrusion Detection: Systems and Models. Proc. Of the Eleventh IEEE International Workshops on Enabling Technologies: Infrastructure or Collaborative Enterprises, 2002.

    Google Scholar 

  6. Kemmerer, R.A. and Vigna, G. “Intrusion Detection: A Brief History and Overview.” IEEE Symp. Security and Privacy, IEEE CS Press, Los Alamitos, Calif., 2002, pp. 27–29.

    Google Scholar 

  7. Packer, Ryon. “A Basic Guide to Intrusion Detection.” White Papers. August 2001: 1–8.

    Google Scholar 

  8. VDOT, Planned changes FY2002 environment, Enterprise computing Environment, Virginia Department of Transportation (VDOT), May 30, 2001.

    Google Scholar 

  9. Durst, Robert, et al. “Testing and Evaluating Computer Intrusion Detection Systems.” Communications of the ACM, July 1999: 53–61.

    Google Scholar 

  10. Cuppens, F. and R. Ortalo. Lambda: A language to model a database for detection of attacks. In Proceedings of the Third International Workshop on the Recent Advances in Intrusion Detection (RAID’2000), October 2000.

    Google Scholar 

  11. Bayne, J. An Overview of Threat and Risk Assessment. SAN’s Institute Information Security Reading Room, Jan 22, 2002. http://rr.sans.org/audit/overview.php . Accessed June 15, 2001.

  12. Symantec Inc., Threat Severity Assessment, 2002. Accessed July 23, 2002. http://securityresponse.symantec.com/avcenter/threat.severity.html .

  13. Curry, D. and Debar, H. “Intrusion Detection Message Exchange Format: Extensible Markup Language (XML) Document Type Defnition,” http://www.ietf.org.internet-drafts/draft-ietf-idwg-idmef-xml-06.txt , Dec. 2001.

  14. Ogden, R.T., (1997) Essential Wavelets for Statistical Applications and Data Analysis, Birkhäuser.

    Google Scholar 

  15. Basseville, M., and Nikiforov, I., Detection of Abrupt Changes, Theory and Applications, Englewood Cliffs, NJ, Prentice Hall, 1993.

    Google Scholar 

  16. Manikopouls, Constantine, and Papavassiliou. Network Intrusion and Fault Detection: A Statistical Anomaly Approach. IEEE Communications Magazine. October 2002.

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Department of Systems and Information Engineering, University of Virginia, Charlottesville, VA, 22904

    William T. Scherer (Associate Professor)

  2. Department of Systems and Information Engineering, University of Virginia, Charlottesville, VA, 22904

    Leah L. Spradley (Research Assistant)

  3. Smart Travel Lab, Department of Civil Engineering, University of Virginia, Charlottesville, VA, 22904

    Marc H. Evans (Research Engineer)

Authors
  1. William T. Scherer
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Leah L. Spradley
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Marc H. Evans
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Department of Management Information Systems, University of Arizona, Tucson, AZ, 85721, USA

    Hsinchun Chen , Daniel D. Zeng  & Therani Madhusudan ,  & 

  2. Tucson Police Department, 270 S. Stone Ave., Tucson, AZ, 85701, USA

    Richard Miranda  & Jenny Schroeder  & 

  3. School of Public Administration and Policy, University of Arizona, Tucson, AZ, 85721, USA

    Chris Demchak

Rights and permissions

Reprints and permissions

Copyright information

© 2003 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Scherer, W.T., Spradley, L.L., Evans, M.H. (2003). Integrated “Mixed” Networks Security Monitoring — A Proposed Framework. In: Chen, H., Miranda, R., Zeng, D.D., Demchak, C., Schroeder, J., Madhusudan, T. (eds) Intelligence and Security Informatics. ISI 2003. Lecture Notes in Computer Science, vol 2665. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-44853-5_23

Download citation

  • DOI: https://doi.org/10.1007/3-540-44853-5_23

  • Published:

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-40189-6

  • Online ISBN: 978-3-540-44853-2

  • eBook Packages: Springer Book Archive

Publish with us

Policies and ethics

Search

Navigation