@article{149,
  author = {Elvis Pontes,Adilson E. Guelfi},
  title = {Cooperative Architecture Applied for Distributed Intrusion Forecasting Systems (DIFS)},
  journal = {Journal of Information Security Research},
  year = {2010},
  volume = {1},
  number = {1},
  doi = {},
  url = {http://www.dline.info/jisr/fulltext/v1n4/2.pdf},
  abstract = {Nowadays, integrity, availability and reliability from information systems have been threatened by intrusions and Unwanted Internet Traffic (UIT), Intrusion Detection Systems (IDS) are largely employed to cope with UIT, but IDS lack in security as they are mainly based on postmortem approaches: detection and/or blocking happen only after UIT has inflicted serious damage. Intending to improve intrusion detection, in our earlier work we proposed an approach to cope with UIT in a proactive manner, using forecasting techniques combined with Return on Security Investment (ROSI). In this paper we examine the applicability of a cooperative architecture regarding forecasts of UIT on a more complex set-up, with hosts associated with sites geographically divided. The aim of this paper is to show a cooperative architecture of IDS with prediction approaches, covering the gaps of the current forecasting techniques concerning UIT: sensors employment, the use of just one prediction technique and forecasts’ sharing. A proof of concept of such architecture is presented, which allows concluding about the improvement in forecasts for IDS to deal with UI.},
}