Alert Correlation in a Cooperative Intrusion Detection Framework
SP '02 Proceedings of the 2002 IEEE Symposium on Security and Privacy
Indra: A peer-to-peer approach to network intrusion detection and prevention
WETICE '03 Proceedings of the Twelfth International Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises
Intrusion Prevention System Design
CIT '04 Proceedings of the The Fourth International Conference on Computer and Information Technology
The Use of Distributed Network-Based IDS Systems in Detection of Evasion Attacks
AICT-SAPIR-ELETE '05 Proceedings of the Advanced Industrial Conference on Telecommunications/Service Assurance with Partial and Intermittent Resources Conference/E-Learning on Telecommunications Workshop
An evaluation technique for network intrusion detection systems
InfoScale '06 Proceedings of the 1st international conference on Scalable information systems
Network Intrusion Detection: Automated and Manual Methods Prone to Attack and Evasion
IEEE Security and Privacy
Anatomy of a Real-Time Intrusion Prevention System
ICAC '08 Proceedings of the 2008 International Conference on Autonomic Computing
Delay constrained uplink scheduling policy for rtPS-ertPS service in IEEE 802.16e BWA systems
International Journal of Communication Systems
A logic-based model to support alert correlation in intrusion detection
Information Fusion
Processing intrusion detection alert aggregates with time series modeling
Information Fusion
Secure communications and data management in ubiquitous services
International Journal of Communication Systems - Secure communications and data management in ubiquitous services
Enhanced high-performance distributed coordination function for IEEE 802.11 multi-rate LANs
International Journal of Communication Systems
IEEE Journal on Selected Areas in Communications - Special issue on wireless and pervasive communications for healthcare
Service vulnerability scanning based on service-oriented architecture in Web service environments
Journal of Systems Architecture: the EUROMICRO Journal
Hi-index | 0.00 |
Dependence on the Internet is increasing dramatically. Therefore, many researchers have given great attention to the issue of how to tighten Internet security. This study proposes a new scheme for the distributed intrusion prevention system (DIPS), in which the concept of ‘union’ is presented for satisfying the increasing requirements of Internet security issues. In this proposed design, the network intrusion detection system (NIDS) applies a misuse detection technique to detect well-known intrusion behavior on the Internet. Meanwhile, for anomaly detection technique, a tool named ‘Scent’ (a network traffic sniffer) is combined with conditional legitimate probability to reveal previously undiscovered intrusion packets that do not match the intrusion signatures in NIDS. Moreover, blocking distributed denial-of-service (DDoS) attacks inside the protected allied network is also covered. To increase the detection accuracy, reduction of false positives and false negatives is also accomplished. Experimental results reveal that the suggested network security system scheme is effective and efficient in resolving the intrusion activity problem of real network environments. Copyright © 2011 John Wiley & Sons, Ltd.