Home > Research > IPA > Ipaglobal


This project targets to develop distributed and integrated network management security technology.
  1. Project Partners
    2. NTTDATA
    Tohoku University
    Aizu University

  2. Research Items
    3. Real-time Detection of "Traffic Behavior" of Illegal Access
    Dynamic event correlation mechanism, design and performance inprovement
    Marging with Internet MAP
    Internet MAP based attacker tracking mechanism
    Global alarming and standard information exchange for illegal access
    Rapid information exchange mechanism between related sites

  3. Features
    4. Realtime traffic dynamics monitoring system
    High sensitive illegal access detection system. This system is network-based illegal access detection system, which has "Traffic Behavior" database.The database stores the filter pattern, packet arrival pattern, and thedetection criteria.
    Attacker tracking with network map
    This system is map-based tracking system. The map is automatically constructerd from IRR(Internet Routing Registry) DB. This system is interface to navigate network administrators to catch up attackers in global network.
    Early alarming system for illegal access
    Once a potential attack is detected, system will generate alarms to related site and network proactively. This technology can apply to cordinated ordistributed attacks to wide are network.
    Illegal access information exchange system
    To cover wide area network, multiple distributed sensors and multiple sub-manager architecture is essential. To realize this idea, well standardized communication mechanism is needed. Especially, network management system is key element for total security management, so our security system interacts and integrate management station and various network elements. Standardization work isgoing with IETF IDWG.

  4. Papers
    • Towards trapping wily intruders in the large , G.Mansfield,K.Ohta,Y.Takei,N.Kato,and Y.Nemoto. TThe proceedings of Second International Work-shop on Recent Advancesin Intrusion Detection,
      West Lafayette ,Indiana,USA,September 7-9,1999.
      Download .pdf file.
      MSPowerPoint file is also available.
    • Synchronizing Management Information Using Traffic Pattern Matching Technique, K.Ohta,Y.Takei,N.Kato,G.Mansfield,and Y.Nemoto. The Proc.of 1999 Symposium on Performance Evaluation of Computerand Telecommunication Systems,pp.349-354 (1999).
      Download .pdf file.
      MSPowerPoint and .ps files are also available.
    • Detection, Defense, and Tracking of Internet-Wide Illegal Access in a Distributed Manner, K.Ohta, G.Mandfield, Y.Takei, N.Kato, Y.Nemoto. The Proc. of INET'2000, July 18-21, 2000.
      Download .pdf file.
      MSPowerPoint is also available.

Copyright © 1997-2002 Cyber Solutions Inc., All rights reserved.