On detection of malicious users using group testing techniques

My T. Thai; Ying Xuan; Incheol Shin; Taieb Znati

doi:10.1109/ICDCS.2008.75

On detection of malicious users using group testing techniques

My T. Thai, Ying Xuan, Incheol Shin, Taieb Znati

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

10 Citations (Scopus)

Abstract

Despite decades of research, there have not been developed concrete defense solutions for most of current attacks to Internet services, let alone new attack types. An essential problem to overcome is that malicious traffic can be similar to legitimate ones. Thus a more fundamental model which should be based on the overall performance of servers/subnets without inspecting each traffic must be remedied. Based on this observation, we propose a novel system framework, called Detection of Malicious Users (DMU) which attempts to solve various attack types. Motivated by DMU, we introduce a new theoretical model, called Size Constraint Group Testing (SCGT). Several algorithms based on SCGT for various networking scenarios are proposed. We also provide several fundamental results on SCGT, revealing some necessary conditions to obtain an O(1) detection time algorithm.

Original language	English
Title of host publication	Proceedings - The 28th International Conference on Distributed Computing Systems, ICDCS 2008
Pages	206-213
Number of pages	8
DOIs	https://doi.org/10.1109/ICDCS.2008.75
Publication status	Published - 2008
Externally published	Yes
Event	28th International Conference on Distributed Computing Systems, ICDCS 2008 - Beijing, China Duration: Jul 17 2008 → Jul 20 2008

Publication series

Name	Proceedings - The 28th International Conference on Distributed Computing Systems, ICDCS 2008

Conference

Conference	28th International Conference on Distributed Computing Systems, ICDCS 2008
Country/Territory	China
City	Beijing
Period	7/17/08 → 7/20/08

ASJC Scopus subject areas

Hardware and Architecture
Software

Access to Document

10.1109/ICDCS.2008.75

Cite this

Thai, M. T., Xuan, Y., Shin, I., & Znati, T. (2008). On detection of malicious users using group testing techniques. In Proceedings - The 28th International Conference on Distributed Computing Systems, ICDCS 2008 (pp. 206-213). Article 4595885 (Proceedings - The 28th International Conference on Distributed Computing Systems, ICDCS 2008). https://doi.org/10.1109/ICDCS.2008.75

On detection of malicious users using group testing techniques. / Thai, My T.; Xuan, Ying; Shin, Incheol et al.
Proceedings - The 28th International Conference on Distributed Computing Systems, ICDCS 2008. 2008. p. 206-213 4595885 (Proceedings - The 28th International Conference on Distributed Computing Systems, ICDCS 2008).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Thai, MT, Xuan, Y, Shin, I & Znati, T 2008, On detection of malicious users using group testing techniques. in Proceedings - The 28th International Conference on Distributed Computing Systems, ICDCS 2008., 4595885, Proceedings - The 28th International Conference on Distributed Computing Systems, ICDCS 2008, pp. 206-213, 28th International Conference on Distributed Computing Systems, ICDCS 2008, Beijing, China, 7/17/08. https://doi.org/10.1109/ICDCS.2008.75

@inproceedings{169906c450e54b1cad6184e25fdbe2c4,

title = "On detection of malicious users using group testing techniques",

abstract = "Despite decades of research, there have not been developed concrete defense solutions for most of current attacks to Internet services, let alone new attack types. An essential problem to overcome is that malicious traffic can be similar to legitimate ones. Thus a more fundamental model which should be based on the overall performance of servers/subnets without inspecting each traffic must be remedied. Based on this observation, we propose a novel system framework, called Detection of Malicious Users (DMU) which attempts to solve various attack types. Motivated by DMU, we introduce a new theoretical model, called Size Constraint Group Testing (SCGT). Several algorithms based on SCGT for various networking scenarios are proposed. We also provide several fundamental results on SCGT, revealing some necessary conditions to obtain an O(1) detection time algorithm.",

author = "Thai, {My T.} and Ying Xuan and Incheol Shin and Taieb Znati",

year = "2008",

doi = "10.1109/ICDCS.2008.75",

language = "English",

isbn = "9780769531724",

series = "Proceedings - The 28th International Conference on Distributed Computing Systems, ICDCS 2008",

pages = "206--213",

booktitle = "Proceedings - The 28th International Conference on Distributed Computing Systems, ICDCS 2008",

note = "28th International Conference on Distributed Computing Systems, ICDCS 2008 ; Conference date: 17-07-2008 Through 20-07-2008",

}

TY - GEN

T1 - On detection of malicious users using group testing techniques

AU - Thai, My T.

AU - Xuan, Ying

AU - Shin, Incheol

AU - Znati, Taieb

PY - 2008

Y1 - 2008

N2 - Despite decades of research, there have not been developed concrete defense solutions for most of current attacks to Internet services, let alone new attack types. An essential problem to overcome is that malicious traffic can be similar to legitimate ones. Thus a more fundamental model which should be based on the overall performance of servers/subnets without inspecting each traffic must be remedied. Based on this observation, we propose a novel system framework, called Detection of Malicious Users (DMU) which attempts to solve various attack types. Motivated by DMU, we introduce a new theoretical model, called Size Constraint Group Testing (SCGT). Several algorithms based on SCGT for various networking scenarios are proposed. We also provide several fundamental results on SCGT, revealing some necessary conditions to obtain an O(1) detection time algorithm.

AB - Despite decades of research, there have not been developed concrete defense solutions for most of current attacks to Internet services, let alone new attack types. An essential problem to overcome is that malicious traffic can be similar to legitimate ones. Thus a more fundamental model which should be based on the overall performance of servers/subnets without inspecting each traffic must be remedied. Based on this observation, we propose a novel system framework, called Detection of Malicious Users (DMU) which attempts to solve various attack types. Motivated by DMU, we introduce a new theoretical model, called Size Constraint Group Testing (SCGT). Several algorithms based on SCGT for various networking scenarios are proposed. We also provide several fundamental results on SCGT, revealing some necessary conditions to obtain an O(1) detection time algorithm.

UR - http://www.scopus.com/inward/record.url?scp=51849166403&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=51849166403&partnerID=8YFLogxK

U2 - 10.1109/ICDCS.2008.75

DO - 10.1109/ICDCS.2008.75

M3 - Conference contribution

AN - SCOPUS:51849166403

SN - 9780769531724

T3 - Proceedings - The 28th International Conference on Distributed Computing Systems, ICDCS 2008

SP - 206

EP - 213

BT - Proceedings - The 28th International Conference on Distributed Computing Systems, ICDCS 2008

T2 - 28th International Conference on Distributed Computing Systems, ICDCS 2008

Y2 - 17 July 2008 through 20 July 2008

ER -

On detection of malicious users using group testing techniques

Abstract

Publication series

Conference

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this