Skip to main content
SpringerLink
Log in

A Novel Threat-Driven Data Collection Method for Resource-Constrained Networks

  • Conference paper
  • First Online:
Network and System Security (NSS 2017)

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 10394))

Included in the following conference series:

  • 3116 Accesses

Abstract

Real-time devices monitoring is a fundamental task of network security. When networks are threatened by cyberattacks, we need accurate monitoring data for timely detecting and disposing network threats. However, in resource-constrained networks, due to limitation of device processing capacity or network bandwidth, it is usually difficult to collect monitoring information precisely and efficiently. To address this problem, we propose a novel threat-driven data collection method. Our method firstly analyses features of the existing or potential network threats, then chooses devices that most probably be affected by the threats, and finally selects data items consistent to the threat features for those screened target collection devices. Experiment results prove that our threat-driven data collection method not only improves the collection efficiency with a satisfying data accuracy, but also reduces devices resource cost of gathering monitoring data, making it suitable for security management in resource-constrained networks.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

  1. Acemoglu, D., Malekian, A., Ozdaglar, A.: Network security and contagion. J. Econ. Theor. 166, 536–585 (2016)

    Article  MathSciNet  MATH  Google Scholar 

  2. Liao, H.J., Lin, C.H.R., Lin, Y.C., et al.: Intrusion detection system: a comprehensive review. J. Netw. Comput. Appl. 36(1), 16–24 (2013)

    Article  Google Scholar 

  3. Kim, H., Feamster, N.: Improving network management with software defined networking. IEEE Commun. Mag. 51(2), 114–119 (2013)

    Article  Google Scholar 

  4. Tripp, T.S., Flocken, P.A., Faihe, Y.: Computer system polling with adjustable intervals based on rules and server states. U.S. Patent 7,548,969 (2009)

    Google Scholar 

  5. Raghavendra, R., Acharya, P., Belding, E.M., et al.: MeshMon: a multi-tiered framework for wireless mesh network monitoring. Wirel. Commun. Mob. Comput. 11(8), 1182–1196 (2011)

    Article  Google Scholar 

  6. Sun, Q., Gao, L., Wang, H., et al.: A dynamic polling strategy based on prediction model for large-scale network monitoring. In: Proceedings of International Conference on Advanced Cloud and Big Data (CBD), pp. 8–13 (2013)

    Google Scholar 

  7. Dilman, M., Raz, D.: Efficient reactive monitoring. IEEE J. Sel. Areas Commun. 20(4), 668–676 (2002)

    Article  Google Scholar 

  8. Jiang, H., Jin, S., Wang, C.: Prediction or not? An energy-efficient framework for clustering-based data collection in wireless sensor networks. IEEE Trans. Parallel Distrib. Syst. 22(6), 1064–1071 (2011)

    Article  Google Scholar 

  9. Safdarian, A., Fotuhi-Firuzabad, M., Lehtonen, M.: A distributed algorithm for managing residential demand response in smart grids. IEEE Trans. Ind. Inf. 10(4), 2385–2393 (2014)

    Article  Google Scholar 

  10. Roskowski, S., Kolm, D., Ruf, M.P., et al.: Rule based data collection and management in a wireless communications network. U.S. Patent 7,551,922 (2009)

    Google Scholar 

  11. Calo, S.B., Dilmaghani, R.B., Freimuth, D.M., et al.: Data collection from networked devices. U.S. Patent 8,935,368 (2015)

    Google Scholar 

  12. Bahr, N.J.: System Safety Engineering and Risk Assessment: A Practical Approach. CRC Press, Florida (2014)

    Google Scholar 

  13. Dickerson, J.E., Dickerson, J.A.: Fuzzy network profiling for intrusion detection. In: Proceedings of 19th International Conference of the North American, pp. 301–306 (2000)

    Google Scholar 

  14. CVSS Homepage. https://www.first.org/cvss. Last accessed 15 May 2017

  15. Chavan, S., Shah, K., Dave, N., et al.: Adaptive neuro-fuzzy intrusion detection systems. In: Proceedings of International Conference on Information Technology: Coding and Computing (ITCC), pp. 70–74 (2014)

    Google Scholar 

Download references

Acknowledgement

This work is supported by the National Key Research and Development Program of China (2016YFB0800303).

Author information

Authors and Affiliations

  1. State Key Laboratory of Information Security, Institute of Information Engineering, Chinese Academy of Sciences, Beijing, China

    Jing Li, Lihua Yin, Yunchuan Guo, Chao Li & Fenghua Li

  2. School of Cyber Security, University of Chinese Academy of Sciences, Beijing, China

    Jing Li, Lihua Yin, Yunchuan Guo & Chao Li

  3. Department of Information Security, Beijing Electronic Science and Technology Institute, Beijing, China

    Lihua Chen

Authors
  1. Jing Li
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Lihua Yin
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Yunchuan Guo
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Chao Li
    View author publications

    You can also search for this author in PubMed Google Scholar

  5. Fenghua Li
    View author publications

    You can also search for this author in PubMed Google Scholar

  6. Lihua Chen
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Chao Li .

Editor information

Editors and Affiliations

  1. Xidian University, Xi’an, China

    Zheng Yan

  2. Eurecom, Sophia Antipolos, Valbonne, France

    Refik Molva

  3. Warsaw University of Technology, Warsaw, Poland

    Wojciech Mazurczyk

  4. Aalto University, Espoo, Finland

    Raimo Kantola

Rights and permissions

Reprints and permissions

Copyright information

© 2017 Springer International Publishing AG

About this paper

Cite this paper

Li, J., Yin, L., Guo, Y., Li, C., Li, F., Chen, L. (2017). A Novel Threat-Driven Data Collection Method for Resource-Constrained Networks. In: Yan, Z., Molva, R., Mazurczyk, W., Kantola, R. (eds) Network and System Security. NSS 2017. Lecture Notes in Computer Science(), vol 10394. Springer, Cham. https://doi.org/10.1007/978-3-319-64701-2_36

Download citation

  • DOI: https://doi.org/10.1007/978-3-319-64701-2_36

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-64700-5

  • Online ISBN: 978-3-319-64701-2

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation