Inter‐organisational intrusion detection using knowledge grid technology
Abstract
Purpose
This paper introduces a solution for employing intrusion detection technology across organisational boundaries by using knowledge grid technology.
Design/methodology/approach
Employment of intrusion detection technology is currently limited to inside organisation deployments. By setting up communities, which maintain trust relationships between network nodes anywhere in the internet, security event data, structured into a common XML‐based format, can be exchanged in a secure and reliable manner.
Findings
A modular architecture has been developed which provides functionality to integrate different audit data generating applications and share knowledge about incidents, vulnerabilities and countermeasures from all over the internet. A security policy, based on the Chinese Wall Security Policy, ensures the protection of information inserted into the network.
Research limitations/implications
The solution is currently in a preliminary stage, providing the description of the design only. Implementation as well as evaluation is under development.
Practical implications
Trusting communities everywhere in the internet will be brought into being so that people may establish trust relationships between each other. Participants may decide themselves whom they trust as a source for security‐related information rather than depending on centralised approaches.
Originality/value
No approach is known combining the two technologies – intrusion detection and grid – as described in this paper. The decentralised, peer‐to‐peer based grid approach together with the introduction of trust relationships and communities results in a new way of thinking about distributing security audit data.
Keywords
Citation
Pilgermann, M., Blyth, A. and Vidalis, S. (2006), "Inter‐organisational intrusion detection using knowledge grid technology", Information Management & Computer Security, Vol. 14 No. 4, pp. 327-342. https://doi.org/10.1108/09685220610690808
Publisher
:Emerald Group Publishing Limited
Copyright © 2006, Emerald Group Publishing Limited