Abstract
Our primary concept is to develop a systemic security view of integrated, independent systems. We present a design for the monitoring of the security of an integrated public safety “mixed” network. The Capital Wireless Integrated Network (CapWIN) is such a system, consisting of a diverse and disparate mixture of public and private networks that share information in order to provide public safety services for metropolitan Washington, DC [1]. It is imperative that the members of CapWIN be aware of the status of the other participants in order to anticipate security events. As of now, there are few means for which the members can obtain real-time information pertaining to the security status of all other parties. Our system is designed to use data fusion to provide system monitoring and feedback to all members. The system is state-based and is designed to be 1) easy to implement, 2) require minimal bandwidth, and 3) be customizable according to the preferences of each member of the network. We present an overview of the system, an analytical model for a state-based description, and system mock-ups.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
CapWIN. Roles, 2002. http://www.capwinproject.com/ . Accessed July 23, 2002.
Ghosh, S. Principles of Secure Network Systems Design. Springer, New York, 2002. ITS America, What is ITS?, 2002. http://www.itsa.org/whatits.html . Accessed July 23, 2002.
Schmuacher, H., and Ghosh, S. A Fundamental Framework for Network Security. Journal of Network and Compute Applications, Vol. 20, 1997, pp. 305–322.
Curtin, Matt. and Ranum Marcus. “Internet Firewalls: FAQ”. http://www.internethack.net\pubs\fwfaq, 2000
Sherif, Joseph and Dearmond, Tommy G. Intrusion Detection: Systems and Models. Proc. Of the Eleventh IEEE International Workshops on Enabling Technologies: Infrastructure or Collaborative Enterprises, 2002.
Kemmerer, R.A. and Vigna, G. “Intrusion Detection: A Brief History and Overview.” IEEE Symp. Security and Privacy, IEEE CS Press, Los Alamitos, Calif., 2002, pp. 27–29.
Packer, Ryon. “A Basic Guide to Intrusion Detection.” White Papers. August 2001: 1–8.
VDOT, Planned changes FY2002 environment, Enterprise computing Environment, Virginia Department of Transportation (VDOT), May 30, 2001.
Durst, Robert, et al. “Testing and Evaluating Computer Intrusion Detection Systems.” Communications of the ACM, July 1999: 53–61.
Cuppens, F. and R. Ortalo. Lambda: A language to model a database for detection of attacks. In Proceedings of the Third International Workshop on the Recent Advances in Intrusion Detection (RAID’2000), October 2000.
Bayne, J. An Overview of Threat and Risk Assessment. SAN’s Institute Information Security Reading Room, Jan 22, 2002. http://rr.sans.org/audit/overview.php . Accessed June 15, 2001.
Symantec Inc., Threat Severity Assessment, 2002. Accessed July 23, 2002. http://securityresponse.symantec.com/avcenter/threat.severity.html .
Curry, D. and Debar, H. “Intrusion Detection Message Exchange Format: Extensible Markup Language (XML) Document Type Defnition,” http://www.ietf.org.internet-drafts/draft-ietf-idwg-idmef-xml-06.txt , Dec. 2001.
Ogden, R.T., (1997) Essential Wavelets for Statistical Applications and Data Analysis, Birkhäuser.
Basseville, M., and Nikiforov, I., Detection of Abrupt Changes, Theory and Applications, Englewood Cliffs, NJ, Prentice Hall, 1993.
Manikopouls, Constantine, and Papavassiliou. Network Intrusion and Fault Detection: A Statistical Anomaly Approach. IEEE Communications Magazine. October 2002.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2003 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Scherer, W.T., Spradley, L.L., Evans, M.H. (2003). Integrated “Mixed” Networks Security Monitoring — A Proposed Framework. In: Chen, H., Miranda, R., Zeng, D.D., Demchak, C., Schroeder, J., Madhusudan, T. (eds) Intelligence and Security Informatics. ISI 2003. Lecture Notes in Computer Science, vol 2665. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-44853-5_23
Download citation
DOI: https://doi.org/10.1007/3-540-44853-5_23
Published:
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-40189-6
Online ISBN: 978-3-540-44853-2
eBook Packages: Springer Book Archive