标题：A collaborative network security management system in metropolitan area network
作者：Mu, Beipeng ;Chen, Xinming ;Chen, Zhen
作者机构：[Mu, Beipeng ;Chen, Xinming ] Department of Automation, Tsinghua University, Beijing, China;[Chen, Zhen ] Research Institute of Information Technology 更多
会议名称：2011 3rd International Conference on Communications and Mobile Computing, CMC 2011
会议日期：April 18, 2011 - April 20, 2011
来源：Proceedings - 2011 3rd International Conference on Communications and Mobile Computing, CMC 2011
摘要：Network Security Appliances are deployed at the vantage point of the Internet to detect security events and prevent attacks. However, these appliances are not so effective when it comes to distributed attacks such as DDoS. This paper presents a design and implementation of collaborative network security management system (CNSMS), which organize the NetSecu nodes into a hybrid P2P and hierarchy architecture to share the security knowledge. NetSecu nodes are organized into a hierarchy architecture so they could realize different management or security functions. In each level, nodes formed a P2P networks for higher efficiency. To guarantee identity trustworthy and information exchange secure, PKI infrastructure is deployed in CNSMS. Finally experiments are conducted to test the computing and communication cost. © 2011 IEEE.