| Publisher DOI: | 10.1145/3123878.3131992 | Title: | Towards Distributed Threat Intelligence in Real-Time | Language: | English | Authors: | Meyer, Philipp  Hiesgen, Raphael Schmidt, Thomas C. Nawrocki, Marcin Wählisch, Matthias |
Keywords: | Internet security; threat detection; network forensic | Issue Date: | 22-Aug-2017 | Publisher: | Association for Computing Machinery (ACM) | Book title: | Proceedings of the 2017 SIGCOMM Posters and Demos | Part of Series: | ACM Conferences | Startpage: | 76 | Endpage: | 78 | Conference: | ACM SIGCOMM Conference 2017 | Abstract: | In this demo, we address the problem of detecting anomalies on the Internet backbone in near real-time. Many of today's incidents may only become visible from inspecting multiple data sources and by considering multiple vantage points simultaneously. We present a setup based on the distributed forensic platform VAST that was extended to import various data streams from passive measurements and incident reporting at multiple locations, and perform an effective correlation analysis shortly after the data becomes exposed to our queries. |
URI: | http://hdl.handle.net/20.500.12738/2128 | ISBN: | 978-1-4503-5057-0 | Review status: | This version was peer reviewed (peer review) | Institute: | Department Informatik Fakultät Technik und Informatik |
Type: | Chapter/Article (Proceedings) |
| Appears in Collections: | Publications without full text |
Show full item record
Add Files to Item
Note about this record
Export
Items in REPOSIT are protected by copyright, with all rights reserved, unless otherwise indicated.