Exchange of data in networks necessitates provision of security and confidentiality.Most networks compromised by intruders are those where the exchange of data is at high risk.The main objective of this paper is to pr...Exchange of data in networks necessitates provision of security and confidentiality.Most networks compromised by intruders are those where the exchange of data is at high risk.The main objective of this paper is to present a solution for secure exchange of attack signatures between the nodes of a distributed network.Malicious activities are monitored and detected by the Intrusion Detection System(IDS)that operates with nodes connected to a distributed network.The IDS operates in two phases,where the first phase consists of detection of anomaly attacks using an ensemble of classifiers such as Random forest,Convolutional neural network,and XGBoost along with genetic algorithm to improve the performance of IDS.The novel attacks detected in this phase are converted into signatures and exchanged further through the network using the blockchain framework in the second phase.This phase uses the cryptosystem as part of the blockchain to store data and secure it at a higher level.The blockchain is implemented using the Hyperledger Fabric v1.0 and v2.0,to create a prototype for secure signature transfer.It exchanges signatures in a much more secured manner using the blockchain architecture when implemented with version 2.0 of Hyperl-edger Fabric.The performance of the proposed blockchain system is evaluated on UNSW NB15 dataset.Blockchain performance has been evaluated in terms of execution time,average latency,throughput and transaction processing time.Experimental evidence of the proposed IDS system demonstrates improved performance with accuracy,detection rate and false alarm rate(FAR)as key parameters used.Accuracy and detection rate increase by 2%and 3%respectively whereas FAR reduces by 1.7%.展开更多
文摘Exchange of data in networks necessitates provision of security and confidentiality.Most networks compromised by intruders are those where the exchange of data is at high risk.The main objective of this paper is to present a solution for secure exchange of attack signatures between the nodes of a distributed network.Malicious activities are monitored and detected by the Intrusion Detection System(IDS)that operates with nodes connected to a distributed network.The IDS operates in two phases,where the first phase consists of detection of anomaly attacks using an ensemble of classifiers such as Random forest,Convolutional neural network,and XGBoost along with genetic algorithm to improve the performance of IDS.The novel attacks detected in this phase are converted into signatures and exchanged further through the network using the blockchain framework in the second phase.This phase uses the cryptosystem as part of the blockchain to store data and secure it at a higher level.The blockchain is implemented using the Hyperledger Fabric v1.0 and v2.0,to create a prototype for secure signature transfer.It exchanges signatures in a much more secured manner using the blockchain architecture when implemented with version 2.0 of Hyperl-edger Fabric.The performance of the proposed blockchain system is evaluated on UNSW NB15 dataset.Blockchain performance has been evaluated in terms of execution time,average latency,throughput and transaction processing time.Experimental evidence of the proposed IDS system demonstrates improved performance with accuracy,detection rate and false alarm rate(FAR)as key parameters used.Accuracy and detection rate increase by 2%and 3%respectively whereas FAR reduces by 1.7%.