Recent evidence of successful Internet-based attacks and frauds involvingnancial institutions highlights the inadequacy of the existing protection mechanisms, in which each instutition implements its own isolated monitoring and reaction strategy. Analyzing on-line activity and detecting attacks on a large scale is an open issue due to the huge amounts of events that should be collected and processed. In this paper, we propose a large-scale distributed event processing system, called intelligence cloud, allowing the nancial entities to participate in a widely distributed monitoring and detection effort through the exchange and processing of information locally available at each participating site. We expect this approach to be able to handle large amounts of events arriving at high rates from multiple domains of the financial scenario. We describe a framework based on the intelligence cloud where each participant can receive early alerts enabling them to deploy proactive countermeasures and mitigation strategies. Copyright © 2009 ACM.
Defending Financial Infrastructures Through Early Warning Systems: The intelligence cloud approach / Lodi, G; Querzoni, Leonardo; Baldoni, Roberto; Marchetti, M; Colajanni, M; Bortnikov, V; Chockler, G; Dekel, E; Laventman, G; Roytman, A.. - (2009). (Intervento presentato al convegno Cyber Security and Information Intelligence Research Workshop tenutosi a Oak Ridge; United States nel April 13–15, 2009) [10.1145/1558607.1558628].
Defending Financial Infrastructures Through Early Warning Systems: The intelligence cloud approach
QUERZONI, Leonardo;BALDONI, Roberto;
2009
Abstract
Recent evidence of successful Internet-based attacks and frauds involvingnancial institutions highlights the inadequacy of the existing protection mechanisms, in which each instutition implements its own isolated monitoring and reaction strategy. Analyzing on-line activity and detecting attacks on a large scale is an open issue due to the huge amounts of events that should be collected and processed. In this paper, we propose a large-scale distributed event processing system, called intelligence cloud, allowing the nancial entities to participate in a widely distributed monitoring and detection effort through the exchange and processing of information locally available at each participating site. We expect this approach to be able to handle large amounts of events arriving at high rates from multiple domains of the financial scenario. We describe a framework based on the intelligence cloud where each participant can receive early alerts enabling them to deploy proactive countermeasures and mitigation strategies. Copyright © 2009 ACM.| File | Dimensione | Formato | |
|---|---|---|---|
|
VE_2009_11573-218786.pdf
solo gestori archivio
Tipologia:
Versione editoriale (versione pubblicata con il layout dell'editore)
Licenza:
Tutti i diritti riservati (All rights reserved)
Dimensione
6.43 MB
Formato
Adobe PDF
|
6.43 MB | Adobe PDF | Contatta l'autore |
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
