Cleaning Your House First: Shifting the Paradigm on How to Secure Networks

Jerome François; Giovane Moreira Moura; Aiko Pras

doi:10.1007/978-3-642-21484-4_1

Cleaning Your House First: Shifting the Paradigm on How to Secure Networks

Jerome François, Giovane Moreira Moura, Aiko Pras

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

5 Citations (Scopus)

235 Downloads (Pure)

Abstract

The standard paradigm when securing networks is to filter ingress traffic to the domain to be protected. Even though many tools and techniques have been developed and employed over the recent years for this purpose, we are still far from having secure networks. In this work, we propose a paradigm shift on the way we secure networks, by investigating whether it would not be efficient to filter egress traffic as well. The main benefit of this approach is the possibility to mitigate malicious activities before they reach the Internet. To evaluate our proposal, we have developed a prototype and conducted experiments using NetFlow data from the University of Twente.

Original language	Undefined
Title of host publication	5th International Conference on Autonomous Infrastructure, Management and Security (AIMS 2011)
Editors	I. Chrisment, A. Couch, R. Badonnel, M. Waldburger
Place of Publication	Berlin
Publisher	Springer
Pages	1-12
Number of pages	12
ISBN (Print)	978-3-642-21484-4
DOIs	https://doi.org/10.1007/978-3-642-21484-4_1 https://doi.org/10.1007/978-3-642-21484-4
Publication status	Published - Jun 2011
Event	5th International Conference on Autonomous Infrastructure, Management and Security 2011 - Ecole Supérieure d'Informatique et Applications de Lorraine, Nancy, France Duration: 13 Jun 2011 → 17 Jun 2011 Conference number: 5 http://www.aims-conference.org/2011/AIMS2011/Welcome.html

Publication series

Name	Lecture Notes in Computer Science
Publisher	Springer Verlag
Volume	6734
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	5th International Conference on Autonomous Infrastructure, Management and Security 2011
Abbreviated title	AIMS 2011
Country/Territory	France
City	Nancy
Period	13/06/11 → 17/06/11
Internet address	http://www.aims-conference.org/2011/AIMS2011/Welcome.html

Keywords

METIS-277677
EWI-20255
IR-77562

Access to Document

Cite this

François, J., Moreira Moura, G., & Pras, A. (2011). Cleaning Your House First: Shifting the Paradigm on How to Secure Networks. In I. Chrisment, A. Couch, R. Badonnel, & M. Waldburger (Eds.), 5th International Conference on Autonomous Infrastructure, Management and Security (AIMS 2011) (pp. 1-12). (Lecture Notes in Computer Science; Vol. 6734). Springer. https://doi.org/10.1007/978-3-642-21484-4_1, https://doi.org/10.1007/978-3-642-21484-4

@inproceedings{7b31624b8411425b96f7bcc7bf0bb45b,

title = "Cleaning Your House First: Shifting the Paradigm on How to Secure Networks",

abstract = "The standard paradigm when securing networks is to filter ingress traffic to the domain to be protected. Even though many tools and techniques have been developed and employed over the recent years for this purpose, we are still far from having secure networks. In this work, we propose a paradigm shift on the way we secure networks, by investigating whether it would not be efficient to filter egress traffic as well. The main benefit of this approach is the possibility to mitigate malicious activities before they reach the Internet. To evaluate our proposal, we have developed a prototype and conducted experiments using NetFlow data from the University of Twente.",

keywords = "METIS-277677, EWI-20255, IR-77562",

author = "Jerome Fran{\c c}ois and {Moreira Moura}, Giovane and Aiko Pras",

note = "eemcs-eprint-20255 ; 5th International Conference on Autonomous Infrastructure, Management and Security 2011 ; Conference date: 13-06-2011 Through 17-06-2011",

year = "2011",

month = jun,

doi = "10.1007/978-3-642-21484-4_1",

language = "Undefined",

isbn = "978-3-642-21484-4",

series = "Lecture Notes in Computer Science",

publisher = "Springer",

pages = "1--12",

editor = "I. Chrisment and A. Couch and R. Badonnel and M. Waldburger",

booktitle = "5th International Conference on Autonomous Infrastructure, Management and Security (AIMS 2011)",

address = "Germany",

url = "http://www.aims-conference.org/2011/AIMS2011/Welcome.html",

}

François, J, Moreira Moura, G & Pras, A 2011, Cleaning Your House First: Shifting the Paradigm on How to Secure Networks. in I Chrisment, A Couch, R Badonnel & M Waldburger (eds), 5th International Conference on Autonomous Infrastructure, Management and Security (AIMS 2011). Lecture Notes in Computer Science, vol. 6734, Springer, Berlin, pp. 1-12, 5th International Conference on Autonomous Infrastructure, Management and Security 2011, Nancy, France, 13/06/11. https://doi.org/10.1007/978-3-642-21484-4_1, https://doi.org/10.1007/978-3-642-21484-4

Cleaning Your House First: Shifting the Paradigm on How to Secure Networks. / François, Jerome; Moreira Moura, Giovane; Pras, Aiko.
5th International Conference on Autonomous Infrastructure, Management and Security (AIMS 2011). ed. / I. Chrisment; A. Couch; R. Badonnel; M. Waldburger. Berlin: Springer, 2011. p. 1-12 (Lecture Notes in Computer Science; Vol. 6734).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

TY - GEN

T1 - Cleaning Your House First: Shifting the Paradigm on How to Secure Networks

AU - François, Jerome

AU - Moreira Moura, Giovane

AU - Pras, Aiko

N1 - Conference code: 5

PY - 2011/6

Y1 - 2011/6

N2 - The standard paradigm when securing networks is to filter ingress traffic to the domain to be protected. Even though many tools and techniques have been developed and employed over the recent years for this purpose, we are still far from having secure networks. In this work, we propose a paradigm shift on the way we secure networks, by investigating whether it would not be efficient to filter egress traffic as well. The main benefit of this approach is the possibility to mitigate malicious activities before they reach the Internet. To evaluate our proposal, we have developed a prototype and conducted experiments using NetFlow data from the University of Twente.

AB - The standard paradigm when securing networks is to filter ingress traffic to the domain to be protected. Even though many tools and techniques have been developed and employed over the recent years for this purpose, we are still far from having secure networks. In this work, we propose a paradigm shift on the way we secure networks, by investigating whether it would not be efficient to filter egress traffic as well. The main benefit of this approach is the possibility to mitigate malicious activities before they reach the Internet. To evaluate our proposal, we have developed a prototype and conducted experiments using NetFlow data from the University of Twente.

KW - METIS-277677

KW - EWI-20255

KW - IR-77562

U2 - 10.1007/978-3-642-21484-4_1

DO - 10.1007/978-3-642-21484-4_1

M3 - Conference contribution

SN - 978-3-642-21484-4

T3 - Lecture Notes in Computer Science

SP - 1

EP - 12

BT - 5th International Conference on Autonomous Infrastructure, Management and Security (AIMS 2011)

A2 - Chrisment, I.

A2 - Couch, A.

A2 - Badonnel, R.

A2 - Waldburger, M.

PB - Springer

CY - Berlin

T2 - 5th International Conference on Autonomous Infrastructure, Management and Security 2011

Y2 - 13 June 2011 through 17 June 2011

ER -

François J, Moreira Moura G, Pras A. Cleaning Your House First: Shifting the Paradigm on How to Secure Networks. In Chrisment I, Couch A, Badonnel R, Waldburger M, editors, 5th International Conference on Autonomous Infrastructure, Management and Security (AIMS 2011). Berlin: Springer. 2011. p. 1-12. (Lecture Notes in Computer Science). doi: 10.1007/978-3-642-21484-4_1, 10.1007/978-3-642-21484-4