Agent-Based real time intrusion detection system against malformed packet attacks

Authors:
Jun-Cheol Jeon;Eun-Yeung Choi;Kee-Young Yoo
Affiliations:
Department of Computer Engineering at Kyungpook National University, Daegu, Korea;Planning and Administration Office at Seoul Metropolitan Office of Education, Seoul, Korea;Department of Computer Engineering at Kyungpook National University, Daegu, Korea
Venue:
PRIMA'06 Proceedings of the 9th Pacific Rim international conference on Agent Computing and Multi-Agent Systems
Year:
2006

Citing 2
Cited 0

Practical Intrusion Detection Handbook

Practical Intrusion Detection Handbook
Network Intrusion Detection: An Analyst's Handbook

Network Intrusion Detection: An Analyst's Handbook

Quantified Score

Hi-index	0.00

Visualization

Abstract

The current paper proposes a network-based Intrusion Detection System (IDS) that can efficiently detect attacks based on malformed packets that continues to increase, along with more intelligent and skillful hacking techniques. Our system firstly extracts the important features from network packets and analyzes simple attacks and detects IP fragmentation attacks. Thereafter, it collects information from the SA and the FA and other strange information related to the malformed packet. Finally, it judges whether or not an intrusion has occurred on the basis of information gathered from target systems by CAs. The simulation result shows 0% false-positive and 0% false-negative, 100% detection ratio, thereby confirming the accuracy of the proposed IDS in detecting fragmentation attacks.