Volume-1 , Issue-4 , Oct 2013, ISSN 2321-3256 (Electronic Version) Go Back

• Open Access   Article

  Architecture for Network-Intrusion Detection and Response in open Networks using Analyzer Mobile Agents

  M.Shivakumar, R.Subalakshmi, S. Shanthakumari and S.John Joseph

  Research Paper | Journal (IJSRNSC)

  Vol.1 , Issue.4 , pp.1-7, Sep-2013

  Abstract

  Full-Text HTML

  References

  Citation

  Abstract
  This paper describes the implementation of distributed agent architecture for intrusion detection and response in networked computers. Unlike conventional intrusion detection systems (IDS), this security system attempts to emulate mechanisms of the natural immune system using Java-based agents. These security agents monitor multiple levels like packet, process, system, user etc. of networked computers to determine correlation among the observed anomalous patterns, reporting such abnormal behavior to the network administrator and possibly taking some action to counter a suspected security violation. Here the focus is on the design aspects of such an intrusion detection system by integrating different artificial intelligence techniques and a mobile agent architecture. Here anomaly based intrusion mechanism will be taken into consideration with the help of agents.

  Key-Words / Index Term
  Component, Mobile Agents (MA), Intrusion Detection, Distributed Systems

  References
  [1]. William Stallings, “Cryptography and Network Security”, Principles and Practices, Third Edition.
  [2]. D. E. Denning, "An intrusion-detection model". IEEE Transactions on Software Engineering, Vol. SE-13 (No. 2):222-232, Feb. 1987.
  [3]. Stephen Northcutt, Judy Novak, “Network Intrusion Detection”, Third Edition, Pearson Education 2003.
  [4]. Anderson, James P., “Computer Security Threat Monitoring and Surveillance,” Technical Report, James P. Anderson Co., Fort Washington, PA, April1980.
  [5]. Amoroso, Edward, Intrusion Detection, Intrusion.net Books, Sparta, New Jersey, 1999. [ASAK99] M.Asaka, S.Okazawa, A.Taguchi, and S.Goto, "A Method of Tracing Intruders by Use of Mobile Agents," INET'99, June 1999.
  [6]. Bauer, David S. and Koblentz, Michael E., “NIDX: An Expert System for Real-Time Network Intrusion Detection,” Proceedings of the Computer Networking Symposium, pp. 90-106, April 1988, Washington, DC.
  [7]. Jeffrey M. Bradshaw, “An Introduction to Software Agents,” In Jeffrey M. Bradshaw, editor, Software Agents, chapter 1. AAAI Press/The MIT Press, 1997.
  [8]. Chess, D., B. Grosof, C. Harrison, D. Levine, C. Parris, G. Tsudik, “Itinerant Agents for Mobile Computing,” IBM Research Report, RC 20010, March 1995.
  [9]. Mark Crosbie and E. H. Spafford, “Active Defense of a Computer System Using Autonomous Agents,” Department of Computer Sciences, Purdue University, CSD-TR-95-008, 1995.
  [10]. Denning, Dorothy E., “An Intrusion Detection Model,” IEEE Transactions on Software Engineering, Vol. SE-13, No. 2, pp. 222-232, February 1987.
  [11]. Farmer, W.M., J.D. Guttman, and V. Swarup, “Security for Mobile Agents: Authentication and State Appraisal,” Proceedings of the 4th European Symposium on Research in Computer Security (ESORICS ’96), pp. 118-130, September1996.
  [12]. Farmer, W.M., J.D. Guttman, and V. Swarup, “Security for Mobile Agents: Issues and Requirements,” Proceedings: National Information Systems Security Conference, pp. 591-597, October 1996.
  [13]. Finin, T., R. Fritzson, D. McKay, and R. McEntire. “KQML as an Agent Communication Language,” Proceedings of the Third International Conference on Information and Knowledge Management (CIKM ’94), ACM Press, Nov. 1994.
  [14]. Hansoty, Jatin N., “LAVA: Secure Delegation of Mobile Applets,” Master’s Thesis North Carolina State Univ., 1997.
  [15]. Harrison, C.G., D.M. Chess, A. Kershenbaum, “Mobile Agents: Are they a good idea?,” IBM Research Report, March 1995.
  [16]. Danny Lange and Mitsuru Oshima, Programming and Deploying Java Mobile Agents with Aglets, Addison-Wesley, 1998.
  [17]. W. Lee, S.J. Stolfo, and K. Mok, “A Data Mining Framework for Building Intrusion Detection Models,” Proceedings of the IEEE Symposium on Security and Privacy, 1999.
  [18]. Marreale, P., “Agents on the Move,” IEEE Spectrum, April 1998, pp. 34-41.
  [19]. Stefano Martino, “A Mobile Agent Approach to Intrusion Detection,” Joint Research Centre-Institute for Systems, Informatics and Safety, Italy, June 1999.
  [20]. Michael M. Sebring et al., “Expert Systems in Intrusion Detection: A Case Study,” Proceedings, 11th National Computer Security Conference, pp. 74-81, October 1988.
  [21]. Stephen E. Smaha, “Haystack: An Intrusion Detection System,” Fourth Aerospace Computer Security Applications Conference, Orlando Florida, pp. 37-44, December 1988.
  [22]. Jonathan Smith, “A Survey of Process Migration Mechanisms,” Operating Systems Review, 22(3), ACM Special Interest Group on Operating Systems, pp. 28-40, July 1988.
  [23]. Wu, S.F., M. S. Davis, J. N. Hansoty, J. J. Yuill, S. Farthing, J. S. Webster, X. Hu. “LAVA: Secure Delegation of Mobile Applets,” Technical Report 96/42, Center for Advanced Computing and Communication, North Carolina State Univ., Raleigh, NC , October 1996.
  

  Citation
  M.Shivakumar, R.Subalakshmi, S. Shanthakumari and S.John Joseph, "Architecture for Network-Intrusion Detection and Response in open Networks using Analyzer Mobile Agents," International Journal of Scientific Research in Network Security and Communication, Vol.1, Issue.4, pp.1-7, 2013

• Open Access   Article

  Investigation Based Performance of Black and Gray Hole Attack in Mobile Ad-Hoc Network

  Pradeep Kumar Sharma, Shivlal Mewada and Pratiksha Nigam

  Research Paper | Journal (IJSRNSC)

  Vol.1 , Issue.4 , pp.8-11, Sep-2013

  Abstract

  Full-Text HTML

  References

  Citation

  Abstract
  Mobile ad hoc networks (MANETs) are a set of mobile nodes which are self-configuring and connected by wireless links automatically as per the defined routing protocol. Security is an essential requirement in MANETs. Compared to wired networks, MANETs are more vulnerable to security attacks due to the lack of a trusted centralized authority and limited resources. Attacks on ad-hoc networks can be classified as passive and active attacks, depending on whether the normal operation of the network is disrupted or not. These mobile nodes communicate with each other without any infrastructure, furthermore, all of the transmission links are established through wireless medium. There is no guarantee that a communication path is free from malicious or compromised nodes which deliberately wish to disrupt the network communication. So protecting the mobile ad-hoc network from malicious attacks is very important and challenging issue. In this paper we address the study of different types of attack, problem of packet forwarding misbehavior and propose a mechanism to detect the black and gray hole attacks.

  Key-Words / Index Term
  Mobile Ad Hoc Network, Black Hole , Gray Hole

  References
  [1] Umesh Kumar Singh, Shivlal Mewada, Lokesh Laddhani & Kamal Bunkar,“an Overview & Study of Security Issues in Mobile Adhoc Networks”,Int. Journal of Computer Science and Information Security (IJCSIS) USA, Volume-9, No.4, pp (106-111), April 2011.
  [2] Shivlal Mewada and Umesh Kumar Singh, “Measurement Based Performance of Reactive and Proactive Routing Protocols in WMN”, Int. Journal of advanced research in Computer Science and Software Engineering Vol. 1, No. 1, pp(1-4), Dec.-2011.
  [3] C.E.Perkins and E.M.Royer, “Ad-Hoc On Demand Distance Vector Routing,” Proceedings of the 2nd IEEE Workshop on Mobile Computing Systems and Applictions, pp.90-100, Feb, 2010.
  [4] Shivlal Mewada, Umesh Kumar Singh and Pradeep Kumar Sharma, " Simulation Based Performance Evaluation of Routing Protocols for Mobile Ad-hoc Networks (MANET)", IRACST - International Journal of Computer Science and Information Technology & Security (IJCSITS), Vol. 2, No. 4,August 2012
  [5] M.Abolhasan, T.Wysocki, E.Dutkiewicz, “ A Review of Routing Protocols for Mobile Ad-Hoc Networks,” Telecommunication and Infromation Research Institute University of Wollongong, Australia, June, 2003.
  [6] T.Clausen, P.Jacquet , “Optimized Link State Routing Protocol (OLSR)”, RFC 3626 October, 2003.
  [7] Z.J.Hass, M.R.Pearlman, P.Samar, “The Zone Routing Protocol (ZRP) for Ad Hoc Networks”, 55th Proceeding of International task force, July, 2002.
  [8] P.V.Jani, “Security within Ad-Hoc Networks,” Position Paper, PAMPAS Workshop, Sept. 16/17 2002.
  [9] M.Parsons, P.Ebinger, “Performance Evaluation of the Impact of Attacks on mobile Ad-Hoc networks”,[Online].Available:www.cse.buffalo.edu/srds2009/dncms2009_submission_person.pdf, [Accessed: April. 10, 2010].
  

  Citation
  Pradeep Kumar Sharma, Shivlal Mewada and Pratiksha Nigam, "Investigation Based Performance of Black and Gray Hole Attack in Mobile Ad-Hoc Network," International Journal of Scientific Research in Network Security and Communication, Vol.1, Issue.4, pp.8-11, 2013

• Open Access   Article

  Virtual Local Area Network Technology

  Shivappa M Metagar, R.G.Hiregouder and Hare Ram Sing

  Review Paper | Journal (IJSRNSC)

  Vol.1 , Issue.4 , pp.12-16, Sep-2013

  Abstract

  Full-Text HTML

  References

  Citation

  Abstract
  VLANs are one of the important technologies is widely used in enterprise networks to improve Ethernet capability and support network policies. However, manuals and textbooks, offer very little information about how VLANs are actually used in practice in different fields. Through discussions with network administrators and analysis of configuration data, we describe how three university campuses and one academic department use VLANs to achieve a variety of goals. We argue that VLANs are ill-suited to some of these goals (e.g., VLANs are often used to realize access control policies, but constrain the types of policies that can be expressed). Furthermore, the use of VLANs leads to significant complexity in the configuration of network devices.

  Key-Words / Index Term
  Computer, Virtual Devices, LAN, End users

  References
  [1]. Umesh Kumar Singh, ShivlalMewada, Lokesh Laddhani & Kamal Bunkar, “An Overview & Study of Security Issues in Mobile Ado Networks”, International Journal of Computer Science and Information Security (IJCSIS) USA, Volume-9, No.4, pp (106-111), April 2011.
  [2]. IEEE, ``Draft Standard for Virtual Bridge Local Area Networks,'' P802.1Q/D1, May 16, 1997, This is the draft standard for VLAN's which covers implementation issues of Layer 1 and 2 VLAN's.
  [3]. Mathias Hein, David Griffiths, Orna Berry, ``Switching Technology in the Local Network: From LAN to Switched LAN to Virtual LAN,'' February 1997,Textbook explanation of what VLAN's are and their types.
  [4]. Susan Biagi, "Virtual LANs," Network VAR v4 n1 p. 10- 12, January 1996, An Overview of VLAN's, advantages, and disadvantages.
  [5]. David J. Buerger, ``Virtual LAN cost savings will stay virtual untilnetworking's next era,'' Network World, March 1995, A short summary on VLAN's.
  [6]. IEEE, ``Traffic Class Expediting and Dynamic Multicast Filtering,'' 802.1p/D6, April 1997,This is the standard for implementing priority and dynamic multicasts. Implementation of priority in VLAN's is based on this standard.
  

  Citation
  Shivappa M Metagar, R.G.Hiregouder and Hare Ram Sing, "Virtual Local Area Network Technology," International Journal of Scientific Research in Network Security and Communication, Vol.1, Issue.4, pp.12-16, 2013

• Open Access   Article

  A Shared Memory Technique for Windows Environment Through Virtualization

  Ganesan.T, Tamizharasan.P and Sabari Giri Murugan.S

  Research Paper | Journal (IJSRNSC)

  Vol.1 , Issue.4 , pp.17-22, Sep-2013

  Abstract

  Full-Text HTML

  References

  Citation

  Abstract
  In a network file sharing system, many practical algorithms to support Byzantine Fault-Tolerant distributed applications has been made in topical years. These solutions are designed to make the applications resistant to successful attacks alongside the system, thereby making services tolerant to intrusions. In recent times, some of these studies have considered the use of virtual machines for building a trusted computing environment. This project presents SMIT (Shared Memory based Intrusion Tolerance), an design for Intrusion Tolerance using virtual machines that benefits from a shared memory to simplify the consensus protocol. P2P overlay topologies and their dynamics, focusing on the modern network. We present Cruiser, a fast and exact P2P crawler, which can capture a complete snapshot of the network of more than one million peers in just a few minutes. Leveraging recent overlay snapshots captured with Cruiser, we distinguish the graph-related properties of individual overlay snapshots and overlay dynamics across slices of back-to-back snapshots. Our results reveal that while the network has dramatically grown and changed in many ways, it still exhibits the cluster and short path lengths of a small world network.

  Key-Words / Index Term
  Virtual Machines, Memory, Intrusion, Network

  References
  [1.] B. G. Chun, P. Maniatis, and S. Shenker, “Diverse replication for single-machine byzantine-fault tolerance,” in Proceedings of the 2010 USENIX Annual Technical Conference, 2010.
  [2.] H. P. Reiser and R. Kapitza, “VM-FIT: Supporting intrusion tolerance with virtualization technology,” in Proceedings of the 1st Workshop on Recent Advances on Intrusion-Tolerant Systems, 2009, pp. 18–22.
  [3.] M. Correia, N. Neves, L. Lung, and P. Verissimo,“Worm-IT–a wormhole-based intrusion-tolerant group communication system,” The Journal of Systems & Software, vol. 80, no. 2, pp. 178–197, 2009.
  [4.] B. G. Chun, P. Maniatis, and S. Shenker, “Diverse replication for single-machine byzantine-fault tolerance,” in Proceedings of the 2010 USENIX Annual Technical Conference, 2010.
  [5.] H. P. Reiser and R. Kapitza, “VM-FIT: Supporting intrusion tolerance with virtualization technology,” in Proceedings of the 1st Workshop on Recent Advances on Intrusion-Tolerant Systems, 2009, pp. 18–22.
  [6.] M. Correia, N. Neves, L. Lung, and P. Verissimo,“Worm-IT–a wormhole-based intrusion-tolerant group communication system,” The Journal of Systems & Software, vol. 80, no. 2, pp. 178–197, 2009.
  [7.] Wine Project, “Wine user guide,” http://www.winehq.com/site/docs/wine-user/index.
  [8.] Kevin Lawton, Bryce Denney, N. David Guarneri, Volker Ruppert, Christophe Bothamy, and Michael Calabrese, “Bochs x86 pc emulator users manual,” http://bochs.sourceforge.net/, 2003.
  [9.] “Transmeta corp crusoe processor,” http://www.erc.msstate.edu/ reese/EE8063/html/transmeta/transmeta.pdf.
  [10.] “Qemu cpu emulator,” http://fabrice.bellard.free.fr/qemu/qemu-tech.html, 2004.
  

  Citation
  Ganesan.T, Tamizharasan.P and Sabari Giri Murugan.S, "A Shared Memory Technique for Windows Environment Through Virtualization," International Journal of Scientific Research in Network Security and Communication, Vol.1, Issue.4, pp.17-22, 2013