scholarly journals Intruder Detection Monitoring System in Computer Networks Using Snort Based Sms Alert (Sistem Monitoring Deteksi Penyusup Dalam Jaringan Komputer Menggunakan Snort Berbasis Sms Alert)

KOMTEKINFO ◽  
2020 ◽  
Vol 7 (2) ◽  
pp. 159-170
Author(s):  
Heri Yanto ◽  
Febri Hadi
Keyword(s):  
Network Security ◽  
Monitoring System ◽  
Computer Networks ◽  
Data Traffic ◽  
Intruder Detection ◽  
Traffic Detection ◽  
Network Administrators ◽  
Sms Notification

Network security is an important factor in guaranteeing data. Guaranteed security can avoid losses caused by attacks that occur in the network. Administrators play an important role in maintaining data or file security, but administrators cannot at all times monitor the security of the network. This problem can be overcome by adding a system for data traffic detection or called IDS. IDS will be linked by SMS Alert so that administrators can receive notifications of interruptions on the network. In this study, researchers conduct analysis and testing of problems that arise so that it will produce a system that is able to detect attacks or disruptions on the network quickly and can provide warnings to network administrators, so that administrators can take steps to anticipate these disruptions. Attacks can be detected from the pattern of attacks that are in the IDS rule so that intruders who try to enter will be detected and the system will send an SMS notification to the administrator.

Network Security System Implementation Using Raspberry Pi-Based Random Port Knocking Sent Via Telegram

2018 ◽  
Vol 7 (2) ◽  
pp. 61-67
Author(s):  
Iga Revva Princiss Jeinever
Keyword(s):  
High Risk ◽  
Network Security ◽  
Computer Networks ◽  
Computer Network ◽  
Security System ◽  
Raspberry Pi ◽  
System Implementation ◽  
The Right ◽  
Network Administrators ◽  
Ip Block

Computer networks are basically not safe to access freely. Security gaps in the network can be seen by irresponsible people with various techniques. Opening a port for access carries a high risk of being attacked by an attacker. In this connection, network administrators are required to work more to be able to secure the computer network they manage. One form of network security that is often used by network administrators in server management is through remote login such as ports on telnet, SSH, etc. A port that is always open is a network security hole that can be used by people who are not responsible for logging into the server. Focusing on these problems, in this study, Random Port Knocking is the right way and can be used to increase network security. With Random Port Knocking, the port will be opened as needed, the port will automatically change when it fails to log in more than three times and IP will automatically be blocked and access will not continue so that attacks on the network can be avoided and network security stability can be further improved. The final result of this research shows that the method applied in this research makes server safe. Because port randomization and IP block make irresponsible parties try harder to penetrate firewall walls.

scholarly journals Network Security Monitoring System Via Notification Alert

2021 ◽  
Vol 1 (2) ◽  
pp. 113-122
Author(s):  
Rachmat Muwardi ◽  
Hongmin Gao ◽  
Harun Usman Ghifarsyam ◽  
Mirna Yunita ◽  
Andika Arrizki ◽  
...  
Keyword(s):  
Network Security ◽  
Detection System ◽  
Open Data ◽  
Data Traffic ◽  
Security Systems ◽  
Intrusion Prevention ◽  
Security Monitoring ◽  
Intrusion Prevention System ◽  
Security Monitoring System ◽  
Traffic Detection

The development of information technology nowadays has become faster, and this makes network security become important. A huge increasing number of computers that are connected makes many gaps in a network. An administrator has an important role in protecting the security of the network. The problem comes when an administrator has human problems such as pain, negligence, and tiredness while needing rapid information when there is an intrusion on the network. This problem can be solved by adding a data traffic detection system known as Intrusion Detection System (IDS). IDS will be connected to Mail Gateway until that administrator can receive notifications such as alerts during an intrusion to the network anytime and anywhere. Snort as one of the network security systems should be developed as a security detection system and network security. A security intrusion prevention system or an Intrusion Prevented System (IPS). The author tries to do analysis and testing on the subjects above to produce a system capable of detecting the intruder in a network that is mobile and also makes it easy for administrators to open data anywhere and anytime using any device.

scholarly journals Improving Network Security - A Comparison of Open Source DPI Software

2017 ◽  
Vol 2 (2) ◽  
pp. 11
Author(s):  
Gandeva Bayu Satrya ◽  
Faiizal Eko Nugroho ◽  
Tri Brotoharsono
Keyword(s):  
Network Security ◽  
Open Source ◽  
Traffic Control ◽  
Deep Packet Inspection ◽  
Data Traffic ◽  
Next Generation ◽  
Internet Applications ◽  
Ip Address ◽  
Packet Inspection ◽  
Network Administrators

<p>The classification of data traffic in a firewall using parameters such as port number, IP address, and MAC address is not sufficient. For example, currently, many applications can be used without a port number meaning they can easily circumvent a firewall. Firewalls inspecting up to only layer four could allow malicious data to pass. Next-generation deep packet inspection (DPI) is a method that can be used for firewalls as a method of classification up to layer seven in data traffic control.</p><p>This research recommends the use of nDPI and L7-filter by network administrators on existing open source firewalls. Eleven internet applications were used to test and analyze nDPI and L7-filter which are capable of detecting traffic based on the data signature. nDPI and L7-filter were tested for accuracy and speed. We conclude that the development of next-generation deep packet inspection is important for the future of system and network security.</p>

scholarly journals Application of Grounded Theory in Determining Required Elements for IPv6 Risk Assessment Equation

2018 ◽  
Vol 150 ◽  
pp. 06005
Author(s):  
Athirah Rosli ◽  
Abidah Mat Taib ◽  
Wan Nor Ashiqin Wan Ali ◽  
Ros Syamsul Hamid
Keyword(s):  
Risk Assessment ◽  
Decision Making ◽  
Grounded Theory ◽  
Network Security ◽  
Strategic Planning ◽  
Internet Protocol ◽  
Network Environment ◽  
Ipv6 Network ◽  
Robust Network ◽  
Network Administrators

The deployment of Internet Protocol version 6 (IPv6) has raised security concerns among the network administrators. Thus, in strengthening the network security, administrator requires an appropriate method to assess the possible risks that occur in their networks. Aware of the needs to calculate risk in IPv6 network, it is essential to an organization to have an equation that is flexible and consider the requirements of the network. However, the existing risk assessment equations do not consider the requirement of the network. Therefore, this paper presents the adaptation of grounded theory to search for elements that are needed to develop IPv6 risk assessment (IRA6) equation. The attack scenarios’ experiments; UDP Flooding, TCP Flooding and Multicast attacks were carried out in different network environment to show how the IPv6 risk assessment equation being used. The result shows that the IRA6 equation is more flexible to be used regardless the network sizes and easier to calculate the risk value compared to the existing risk assessment equations. Hence, network administrators can have a proper decision making and strategic planning for a robust network security.

Research on Network Security Active Defense System Oriented to Electric Power Monitoring System

2020 ◽  
Author(s):  
Zi Wang ◽  
Shishun Zhu ◽  
Tianming Huang ◽  
Jiang Zhu ◽  
Hao Fang
Keyword(s):  
Network Security ◽  
Electric Power ◽  
Monitoring System ◽  
Defense System ◽  
Power Monitoring ◽  
Active Defense

Introduction to Network Security

2016 ◽  
pp. 1-48
Author(s):  
C. V. Anchugam ◽  
K. Thangadurai
Keyword(s):  
Network Security ◽  
Computer Network ◽  
Data Communications ◽  
Risk Environment ◽  
Human Errors ◽  
Unauthorized Access ◽  
The Past ◽  
Definition Of ◽  
Security Network ◽  
Network Administrators

Writing a chapter on network security is something like writing a brief introduction to flying a commercial airliner. Dissimilar, data communications of the past, today's networks incorporate varied devices that handle the data because it passes from the sender to the receiver. The first question to address is what we mean “network security”. Network security consists of the provisions and policies adopted by a network administrator to prevent and monitor unauthorized access, misuse, modification, or denial of a computer network and network-accessible resources. A generic definition of security is “freedom from risk or danger and safety”. However it is not only human errors that can cause problem to network security, problems can also be caused by natural forces like fire breakouts, earthquakes, floods lightning etc. The ways network administrators think about securing networks has been changed by an increasingly dynamic and technically challenging risk environment. Security is an assessment of risk. Secure environments are designed and developed through an intentional effort.

Network Simulation Tools for Supporting Teaching in Computer Networks

2012 ◽  
pp. 479-489 ◽  
Author(s):  
Shao Ying Zhu ◽  
Gerald Schaefer
Keyword(s):  
Student Performance ◽  
Computer Networks ◽  
Network Simulation ◽  
Computer Networking ◽  
Actual Performance ◽  
Simulation Tools ◽  
Virtual Computer ◽  
Network Administrators ◽  
Interactive Feedback ◽  
Different Levels

Computer networks have evolved dramatically in recent years and consequently qualified and experienced network administrators are highly sought after, which in turn has led to the development of specialised computer networking courses at many universities. In this chapter, the authors investigate the use of network simulation tools as an alternative to be employed in computer networking laboratories. Network simulation tools provide students with the opportunity to freely experiment with virtual computer networks and equipment without the expensive costs associated with real networking hardware. The results of their research show that students appreciate the use of network simulators and see them as an effective approach to learning computer networking concepts and gaining the relevant experience. This was also confirmed by the actual performance of students who experienced different levels of exposure to networks simulators during their studies. The authors furthermore investigate the use of interactive, electronically assessed lab sessions, where students get immediate and interactive feedback while they are going through lab exercises. Their research shows that this approach not only releases the lecturer from less demanding students to better support weaker students, but that this will also lead to improved student performance and better student retention.

Game Theory for Network Security

Game Theory ◽  
2017 ◽  
pp. 369-382
Author(s):  
Sungwook Kim
Keyword(s):  
Game Theory ◽  
Network Security ◽  
Computer Networks ◽  
Computer Network ◽  
Government Agencies ◽  
Public And Private ◽  
Unauthorized Access ◽  
Access To Data

Network security consists of the provisions and policies adopted by a network administrator to prevent and monitor unauthorized access, misuse, modification, or denial of a computer network and network-accessible resources. It involves the authorization of access to data in a network, which is controlled by the network administrator. Usually, network security covers a variety of computer networks, both public and private, that are used in everyday jobs conducting transactions and communications among businesses, government agencies, and individuals. This chapter explores network security.

Introduction, Classification and Implementation of Honeypots

2009 ◽  
pp. 371-382
Author(s):  
Miguel Jose Hernandez y Lopez ◽  
Carlos Francisco Lerma Resendez
Keyword(s):  
Information Security ◽  
Computer System ◽  
Computer Networks ◽  
Production Environment ◽  
Modern Computer ◽  
Educational Environments ◽  
Controlled Environments ◽  
Set Up ◽  
Network Administrators ◽  
Different Levels

This chapter discusses the basic aspects of Honeypots, how they are implemented in modern computer networks, as well as their practical uses and implementation in educational environments, providing the reader with the most important points regarding the main characteristics of Honeypots and Honeynets. Honeypots are defined as “closely monitored network decoys” that can be set by network administrators to deal with a wide variety of attacks and interact with users in different levels (Provos, 2004). The implementation of Honeypots provides an answer to a common question posted by the field of information security and forensics: How to dissect the elements that make up an attack against a computer system. The chapter will summarizes the different features and capabilities of Honeypots once they are set up in a production environment to clarify the elements that are needed to be configured in order for a Honeypot to accomplish its main tasks and in order for it to be considered an effective tool. The end of the chapter will shift towards the analysis of virtualization as an important tool that maximizes the practical use of Honeypots in controlled environments that are focused towards the study of attacks, responses and analysis methods.

Sign in / Sign up

Export Citation Format

Share Document