Keywords: security infrastructure, internet computing, grid computing, intrusion detection, worm containment, DDoS defence, distributed hash table, critical infrastructures, network security
DHT-based security infrastructure for trusted internet and grid computing
We designed a distributed security infrastructure with self-defence capabilities to secure networked resources in Grids and internet applications. This paper reports new developments in fuzzy trust management, game-theoretic Grid models, security-binding methodology, as well as new Grid performance metrics, defence architecture and mechanisms against intrusions, worms, and low-rate pulsing Distributed Denial of Service (DDoS) attacks. The design is based on a novel Distributed Hash Table (DHT) for security enforcement among Grid sites scattered over the internet.