Classification of intrusion detection system (IDS) based on computer network

2017 ◽  
Author(s):  
David Ahmad Effendy ◽  
Kusrini Kusrini ◽  
Sudarmawan Sudarmawan
Keyword(s):  
Intrusion Detection ◽  
Intrusion Detection System ◽  
Computer Network ◽  
Detection System

scholarly journals FEATURE SELECTION AND CLASSIFICATION OF INTRUSION DETECTION SYSTEM USING ROUGH SET

2013 ◽  
pp. 48-51
Author(s):  
NIKITA GUPTA ◽  
NARENDER SINGH ◽  
VIJAY SHARMA ◽  
TARUN SHARMA ◽  
AMAN SINGH BHANDARI
Keyword(s):  
Feature Selection ◽  
Intrusion Detection ◽  
Rough Set ◽  
Intrusion Detection System ◽  
Rough Set Theory ◽  
Computer Network ◽  
Detection System ◽  
Classification Rules ◽  
Training Set

With the expansion of computer network there is a challenge to compete with the intruders who can easily break into the system. So it becomes a necessity to device systems or algorithms that can not only detect intrusion but can also improve the detection rate. In this paper we propose an intrusion detection system that uses rough set theory for feature selection, which is extraction of relevant attributes from the entire set of attributes describing a data packet and used the same theory to classify the packet if it is normal or an attack. After the simplification of the discernibility matrix we were to select or reduce the features. We have used Rosetta tool to obtain the reducts and classification rules. NSL KDD dataset is used as training set and is provided to Rosetta to obtain the classification rules.

scholarly journals Classification of Intrusion Detection System

2015 ◽  
Vol 118 (7) ◽  
pp. 23-26 ◽  
Author(s):  
Abhishek Pharate ◽  
Harsha Bhat ◽  
Vaibhav Shilimkar ◽  
Nalini Mhetre
Keyword(s):  
Intrusion Detection ◽  
Intrusion Detection System ◽  
Detection System

scholarly journals PEMANFAATAN INTRUSION DETECTION SYSTEM (IDS) SEBAGAI OTOMATISASI KONFIGURASI FIREWALL BERBASIS WEB SERVICE MENGGUNAKAN ARSITEKTUR REPRESENTATIONAL STATE TRANSFER (REST)

Compiler ◽  
2013 ◽  
Vol 2 (2) ◽  
Author(s):  
Demmy Nanda Awangga ◽  
Haruno Sajati ◽  
Yenni Astuti
Keyword(s):  
Intrusion Detection ◽  
Web Service ◽  
Intrusion Detection System ◽  
Computer Network ◽  
Detection System ◽  
Ip Address ◽  
Final Project ◽  
Representational State Transfer ◽  
State Transfer ◽  
Representational State

Many things can destabilize a computer network connections, both with regard to hardware and software. Therefore, we need a technique for network security, one of them is firewall. The problems that arise in this final project is to build a linux based firewall automation application via web service by using REST (Representational State Transfer) architecture and IDS (Intrusion Detection System). The system buid firewall rules using linux operating system with the help o f 2 pieces o f IDS to detect theactivities of traffic data between the intruder and the server that will be recorded in the IDS database. The system will compare the server with IDS on the router to get the IP address o f the actual intruders, so it will be blocked by the firewall. The applications is used to prevents the ping o f death attack usingweb service and REST protocol so that firewall rules will run automatically.

Deploying Honeynets

2008 ◽  
pp. 1562-1579
Author(s):  
Ronald C. Dodge Jr. ◽  
Daniel Ragsdale
Keyword(s):  
Intrusion Detection ◽  
Detailed Analysis ◽  
Intrusion Detection System ◽  
Computer Network ◽  
Production Systems ◽  
Detection System ◽  
Network System ◽  
Network Resources ◽  
Malicious User ◽  
Malicious Activity

When competent computer network system administrators are faced with malicious activity on their networks, they think of the problem in terms of four distinct but related activities: detection, prevention, mitigation, and response. The greatest challenge of these four phases is detection. Typically, detection comes in the form of intrusion detection system (IDS) alerts and automated application and log monitors. These however are fraught with mischaracterized alerts that leave administrators looking for a needle in a haystack. One of the most promising emerging security tools is the honeynet Honeynets are designed to divert the malicious user or attacker to non-production systems that are carefully monitored and configured to allow detailed analysis of the attackers’ actions and also protection of other network resources. Honeynets can be configured in many different ways and implemented from a full DMZ to a carefully placed file that is monitored for access.

Deploying Honeynets

2011 ◽  
pp. 266-286
Author(s):  
Ronald C. Dodge Jr. ◽  
Daniel Ragsdale
Keyword(s):  
Intrusion Detection ◽  
Detailed Analysis ◽  
Intrusion Detection System ◽  
Computer Network ◽  
Production Systems ◽  
Detection System ◽  
Network System ◽  
Network Resources ◽  
Malicious User ◽  
Malicious Activity

When competent computer network system administrators are faced with malicious activity on their networks, they think of the problem in terms of four distinct but related activities: detection, prevention, mitigation, and response. The greatest challenge of these four phases is detection. Typically, detection comes in the form of intrusion detection system (IDS) alerts and automated application and log monitors. These however are fraught with mischaracterized alerts that leave administrators looking for a needle in a haystack. One of the most promising emerging security tools is the honeynet Honeynets are designed to divert the malicious user or attacker to non-production systems that are carefully monitored and configured to allow detailed analysis of the attackers’ actions and also protection of other network resources. Honeynets can be configured in many different ways and implemented from a full DMZ to a carefully placed file that is monitored for access.

scholarly journals DEVELOPMENT OF AN INTRUSION DETECTION SYSTEM IN A COMPUTER NETWORK

2014 ◽  
Vol 12 (5) ◽  
pp. 3479-3485
Author(s):  
Babatunde R.S ◽  
Adewole K.S ◽  
Abdulsalam S.O ◽  
Isiaka R.M
Keyword(s):  
Intrusion Detection ◽  
Intrusion Detection System ◽  
Preventive Measures ◽  
Computer Network ◽  
Detection System ◽  
Denial Of Service ◽  
Network System ◽  
Network Attack ◽  
Network Technologies

The development of network technologies and application has promoted network attack both in number and severity.  The last few years have seen a dramatic increase in the number of attacks, hence, intrusion detection has become the mainstream of information assurance. A computer network system should provide confidentiality, integrity and assurance against denial of service. While firewalls do provide some protection, they do not provide full protection.  This is because not all access to the network occurs through the firewall.  This is why firewalls need to be complemented by an intrusion detection system (IDS).An IDS does not usually take preventive measures when an attack is detected; it is a reactive rather than proactive agent. It plays the role of an informant rather than a police officer. In this research, an intrusion detection system that can be used to deny illegitimate access to some operations was developed. The IDS also controls the kind of operations performed by users (i.e. clients) on the network. However, unlike other methods, this requires no encryption or cryptographic processing on a per-packet basis. Instead, it scans the various messages sent on a network by the user. The system was developed using MicrosoftVisual Basic.

Sign in / Sign up

Export Citation Format

Share Document