The contents of this legacy page are no longer maintained nor supported, and are made available only for historical purposes.

Bibliography Details

P. Lincoln, P. Porras, and V. Shmatikov, "Privacy-Preserving Sharing and Correlation of Security Alerts", in USENIX Security Symposium, 2004.

Privacy-Preserving Sharing and Correlation of Security Alerts
Authors: P. Lincoln
P. Porras
V. Shmatikov
Published: USENIX Security Symposium, 2004
URL: http://www.usenix.org/publications/library/proceedings/sec04/tech/lincoln.html
ENTRY DATE: 2008-06-16
ABSTRACT: We present a practical scheme for Internet-scale collaborative analysis of information security threats which provides strong privacy guarantees to contributors of alerts. Wide-area analysis centers are proving a valuable early warning service against worms, viruses, and other malicious activities. At the same time, protecting individual and organizational privacy is no longer optional in today's business climate. We propose a set of data sanitization techniques that enable community alert aggregation and correlation, while maintaining privacy for alert contributors. Our approach is practical, scalable, does not rely on trusted third parties or secure multiparty computation schemes, and does not require sophisticated key management.