skip to main content
10.1145/1558607.1558628acmotherconferencesArticle/Chapter ViewAbstractPublication PagescsiirwConference Proceedingsconference-collections
research-article

Defending financial infrastructures through early warning systems: the intelligence cloud approach

Published:13 April 2009Publication History

ABSTRACT

Recent evidence of successful Internet-based attacks and frauds involving financial institutions highlights the inadequacy of the existing protection mechanisms, in which each instutition implements its own isolated monitoring and reaction strategy. Analyzing on-line activity and detecting attacks on a large scale is an open issue due to the huge amounts of events that should be collected and processed. In this paper, we propose a large-scale distributed event processing system, called intelligence cloud, allowing the financial entities to participate in a widely distributed monitoring and detection effort through the exchange and processing of information locally available at each participating site. We expect this approach to be able to handle large amounts of events arriving at high rates from multiple domains of the financial scenario. We describe a framework based on the intelligence cloud where each participant can receive early alerts enabling them to deploy proactive countermeasures and mitigation strategies.

References

  1. http://hadoop.apache.org/Google ScholarGoogle Scholar
  2. http://www.comifin.eu/Google ScholarGoogle Scholar
  3. http://www.jaql.org/Google ScholarGoogle Scholar
  4. http://www.json.org/Google ScholarGoogle Scholar
  5. System S, http://domino.research.ibm.com/comm/research_projects.nsf/pages/esps.index.htmlGoogle ScholarGoogle Scholar
  6. AT&T "Protect your business by preventing Internet attacks", September 2004, http://www.corp.att.com/emea/docs/pb/internet_protect.pdfGoogle ScholarGoogle Scholar
  7. ChronoPay Suffers DDoS Attack, http://www.kommersant.com/p876309/r_500/electronic_payment_processingGoogle ScholarGoogle Scholar
  8. FBI investigates 9 Million ATM scam, http://www.myfoxny.com/dpp/news/090202_FBI_Investigates_9_Million_ATM_ScamGoogle ScholarGoogle Scholar
  9. Liberty Reserve is down under DDoS attack, http://www.ecommerce-journal.com/news/libertyreserve_what_is_going_onGoogle ScholarGoogle Scholar
  10. National Australia Bank hit by DDoS attack, http://www.zdnet.com.au/news/security/soa/National-Australia-Bank-hit-by-DDoS-attack/0,130061744,339271790,00.htmGoogle ScholarGoogle Scholar
  11. Netcraft, Payment Gateway StormPay Battling Sustained DDoS Attack, http://news.netcraft.com/, 10th February, 2006Google ScholarGoogle Scholar
  12. Update: Credit card firm hit by DDoS attack, http://www.computerworld.com/securitytopics/security/story/0,10801,96099,00.htmlGoogle ScholarGoogle Scholar
  13. R. Baldoni, R. Beraldi, V. Quema, L. Querzoni, and S. Tucci-Piergiovanni, "TERA: topic-based event routing for peer-to-peer architectures", In Proc. of the 2007 ACM international conference on Distributed event-based systems, 2007 Google ScholarGoogle ScholarDigital LibraryDigital Library
  14. R. Baldoni, S. Bonomi, L. Querzoni, and S. Tucci-Piergiovanni, "Investigating the Existence and the Regularity of Logarithmic Harary Graphs", In Proc. of the IEEE International Symposium on Reliable Distributed Systems, 2008 (extended version to appear in Theoretical Computer Science). Google ScholarGoogle ScholarDigital LibraryDigital Library
  15. N. Bansal, R. Bhagwan, N. Jain, Y. Park, D. S. Turaga, C. Venkaramani, "Towards Optimal Operator Placement in Partial-Fault Tolerant Applications", IEEE Infocom 2008, April, Phoenix, AZGoogle ScholarGoogle Scholar
  16. D. Bickson, Y. Tock, O. Shental, D. Dolev, "Polynomial Linear Programming with Gaussian Belief Propagation", In Proc. 46th Annual Allerton Conference on Communication, Control, and Computing, Monticello, IL, USA, September 2008.Google ScholarGoogle Scholar
  17. G. Chockler, R. Melamed, Y. Tock, R. Vitenberg "SpiderCast: An Interest-Aware Unstructured Overlay for Topic-Based Publish/Subscribe", LADIS 2008.Google ScholarGoogle Scholar
  18. F. Fu, D. S. Turaga, O. Verscheure, M. Van der Schaar, and L. Amini, "Configuring networked classifiers in distributed and resource constrained stream processing systems", In Proc. of ICASSP 2007.Google ScholarGoogle Scholar
  19. Girdzijauskas, G. Chockler, Melamed, Y. Tock. "Gravity: An Interest-Aware Publish/Subscribe System Based on Structured Overlays". In Proc. of DEBS'08 (fast abstract), Rome, July 2008.Google ScholarGoogle Scholar
  20. R. Melamed and I. Keidar, "Araneola: A Scalable Reliable Multicast System for Dynamic Environments". Journal of Parallel and Distributed Computing (JPDC) 68(12), December 2008. Google ScholarGoogle ScholarDigital LibraryDigital Library
  21. Y. Vigfusson, H. Abu-Libdeh, M. Balakrishnan, K. Birman, Y. Tock, "Dr. Multicast: Rx for Datacenter Communication Scalability", In Proc. of HOTNETS '08 2008.Google ScholarGoogle Scholar

Index Terms

  1. Defending financial infrastructures through early warning systems: the intelligence cloud approach

          Recommendations

          Comments

          Login options

          Check if you have access through your login credentials or your institution to get full access on this article.

          Sign in
          • Published in

            cover image ACM Other conferences
            CSIIRW '09: Proceedings of the 5th Annual Workshop on Cyber Security and Information Intelligence Research: Cyber Security and Information Intelligence Challenges and Strategies
            April 2009
            952 pages
            ISBN:9781605585185
            DOI:10.1145/1558607

            Copyright © 2009 ACM

            Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

            Publisher

            Association for Computing Machinery

            New York, NY, United States

            Publication History

            • Published: 13 April 2009

            Permissions

            Request permissions about this article.

            Request Permissions

            Check for updates

            Qualifiers

            • research-article

          PDF Format

          View or Download as a PDF file.

          PDF

          eReader

          View online with eReader.

          eReader