Cleaning Your House First: Shifting the Paradigm on How to Secure Networks

Jerome François, Giovane Moreira Moura, Aiko Pras

Research output: Chapter in Book/Report/Conference proceedingConference contribution

  • 5 Citations

Abstract

The standard paradigm when securing networks is to filter ingress traffic to the domain to be protected. Even though many tools and techniques have been developed and employed over the recent years for this purpose, we are still far from having secure networks. In this work, we propose a paradigm shift on the way we secure networks, by investigating whether it would not be efficient to filter egress traffic as well. The main benefit of this approach is the possibility to mitigate malicious activities before they reach the Internet. To evaluate our proposal, we have developed a prototype and conducted experiments using NetFlow data from the University of Twente.
LanguageUndefined
Title of host publication5th International Conference on Autonomous Infrastructure, Management and Security (AIMS 2011)
EditorsI. Chrisment, A. Couch, R. Badonnel, M. Waldburger
Place of PublicationBerlin
PublisherSpringer Verlag
Pages1-12
Number of pages12
ISBN (Print)978-3-642-21484-4
DOIs
StatePublished - Jun 2011
Event5th International Conference on Autonomous Infrastructure, Management and Security 2011 - Ecole Supérieure d'Informatique et Applications de Lorraine, Nancy, France
Duration: 13 Jun 201117 Jun 2011
Conference number: 5
http://www.aims-conference.org/2011/AIMS2011/Welcome.html

Publication series

NameLecture Notes in Computer Science
PublisherSpringer Verlag
Volume6734
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Conference

Conference5th International Conference on Autonomous Infrastructure, Management and Security 2011
Abbreviated titleAIMS 2011
CountryFrance
CityNancy
Period13/06/1117/06/11
Internet address

Keywords

  • METIS-277677
  • EWI-20255
  • IR-77562

Cite this

François, J., Moreira Moura, G., & Pras, A. (2011). Cleaning Your House First: Shifting the Paradigm on How to Secure Networks. In I. Chrisment, A. Couch, R. Badonnel, & M. Waldburger (Eds.), 5th International Conference on Autonomous Infrastructure, Management and Security (AIMS 2011) (pp. 1-12). (Lecture Notes in Computer Science; Vol. 6734). Berlin: Springer Verlag. DOI: 10.1007/978-3-642-21484-4_1, 10.1007/978-3-642-21484-4
François, Jerome ; Moreira Moura, Giovane ; Pras, Aiko. / Cleaning Your House First: Shifting the Paradigm on How to Secure Networks. 5th International Conference on Autonomous Infrastructure, Management and Security (AIMS 2011). editor / I. Chrisment ; A. Couch ; R. Badonnel ; M. Waldburger. Berlin : Springer Verlag, 2011. pp. 1-12 (Lecture Notes in Computer Science).
@inproceedings{7b31624b8411425b96f7bcc7bf0bb45b,
title = "Cleaning Your House First: Shifting the Paradigm on How to Secure Networks",
abstract = "The standard paradigm when securing networks is to filter ingress traffic to the domain to be protected. Even though many tools and techniques have been developed and employed over the recent years for this purpose, we are still far from having secure networks. In this work, we propose a paradigm shift on the way we secure networks, by investigating whether it would not be efficient to filter egress traffic as well. The main benefit of this approach is the possibility to mitigate malicious activities before they reach the Internet. To evaluate our proposal, we have developed a prototype and conducted experiments using NetFlow data from the University of Twente.",
keywords = "METIS-277677, EWI-20255, IR-77562",
author = "Jerome Fran{\cc}ois and {Moreira Moura}, Giovane and Aiko Pras",
note = "eemcs-eprint-20255",
year = "2011",
month = "6",
doi = "10.1007/978-3-642-21484-4_1",
language = "Undefined",
isbn = "978-3-642-21484-4",
series = "Lecture Notes in Computer Science",
publisher = "Springer Verlag",
pages = "1--12",
editor = "I. Chrisment and A. Couch and R. Badonnel and M. Waldburger",
booktitle = "5th International Conference on Autonomous Infrastructure, Management and Security (AIMS 2011)",
address = "Germany",

}

François, J, Moreira Moura, G & Pras, A 2011, Cleaning Your House First: Shifting the Paradigm on How to Secure Networks. in I Chrisment, A Couch, R Badonnel & M Waldburger (eds), 5th International Conference on Autonomous Infrastructure, Management and Security (AIMS 2011). Lecture Notes in Computer Science, vol. 6734, Springer Verlag, Berlin, pp. 1-12, 5th International Conference on Autonomous Infrastructure, Management and Security 2011, Nancy, France, 13/06/11. DOI: 10.1007/978-3-642-21484-4_1, 10.1007/978-3-642-21484-4

Cleaning Your House First: Shifting the Paradigm on How to Secure Networks. / François, Jerome; Moreira Moura, Giovane; Pras, Aiko.

5th International Conference on Autonomous Infrastructure, Management and Security (AIMS 2011). ed. / I. Chrisment; A. Couch; R. Badonnel; M. Waldburger. Berlin : Springer Verlag, 2011. p. 1-12 (Lecture Notes in Computer Science; Vol. 6734).

Research output: Chapter in Book/Report/Conference proceedingConference contribution

TY - GEN

T1 - Cleaning Your House First: Shifting the Paradigm on How to Secure Networks

AU - François,Jerome

AU - Moreira Moura,Giovane

AU - Pras,Aiko

N1 - eemcs-eprint-20255

PY - 2011/6

Y1 - 2011/6

N2 - The standard paradigm when securing networks is to filter ingress traffic to the domain to be protected. Even though many tools and techniques have been developed and employed over the recent years for this purpose, we are still far from having secure networks. In this work, we propose a paradigm shift on the way we secure networks, by investigating whether it would not be efficient to filter egress traffic as well. The main benefit of this approach is the possibility to mitigate malicious activities before they reach the Internet. To evaluate our proposal, we have developed a prototype and conducted experiments using NetFlow data from the University of Twente.

AB - The standard paradigm when securing networks is to filter ingress traffic to the domain to be protected. Even though many tools and techniques have been developed and employed over the recent years for this purpose, we are still far from having secure networks. In this work, we propose a paradigm shift on the way we secure networks, by investigating whether it would not be efficient to filter egress traffic as well. The main benefit of this approach is the possibility to mitigate malicious activities before they reach the Internet. To evaluate our proposal, we have developed a prototype and conducted experiments using NetFlow data from the University of Twente.

KW - METIS-277677

KW - EWI-20255

KW - IR-77562

U2 - 10.1007/978-3-642-21484-4_1

DO - 10.1007/978-3-642-21484-4_1

M3 - Conference contribution

SN - 978-3-642-21484-4

T3 - Lecture Notes in Computer Science

SP - 1

EP - 12

BT - 5th International Conference on Autonomous Infrastructure, Management and Security (AIMS 2011)

PB - Springer Verlag

CY - Berlin

ER -

François J, Moreira Moura G, Pras A. Cleaning Your House First: Shifting the Paradigm on How to Secure Networks. In Chrisment I, Couch A, Badonnel R, Waldburger M, editors, 5th International Conference on Autonomous Infrastructure, Management and Security (AIMS 2011). Berlin: Springer Verlag. 2011. p. 1-12. (Lecture Notes in Computer Science). Available from, DOI: 10.1007/978-3-642-21484-4_1, 10.1007/978-3-642-21484-4