Diploma Thesis, TU-Vienna, 2011

Conventional Intrusion Detection Systems (IDS) give a computer system a certain level of security. Attack techniques have developed further just as continuously as defending techniques have done so that there are attack scenarios which can be detected by a conventional IDS with great difficulty only, or not at all. An efficient way to increase the detection rate of an IDS is to let it cooperate with other IDS.

 

Extensible Virtual Shared Memory (XVSM) is a middleware concept that addresses the need for highly collaborative software applications. This master's thesis shows a concept of how to build a modern and efficient Collaborative Intrusion Detection System (CIDS) with XVSM as a base for collaboration. This thesis introduces XIDS as a first prototype of that concept using MozartSpaces, the Java-based implementation of XVSM. A major goal of XIDS is its modular design, which makes it possible to extend the system in an uncomplicated way. This serves to easily and quickly adapt the system to new threat scenarios.