Title :
NBTRL: A Software Platform for Network Background Traffic Replay Based on Log
Author :
Kuo, Zhao ; Kuo, Tang ; Jianfeng, Chu ; Liang, Hu
Author_Institution :
Jilin Univ., Changchun
Abstract :
While the use of intrusion detection system (IDS), which monitors passively specific computing resources, and reports anomalous or intrusive activities, is becoming ubiquitous in today´s network, evaluating IDS performance has been found to be challenging. Most IDS testing approaches are faced with selections with regard to their use of background traffic, which plays an important role in IDS testing. This paper presents the design and implementation of NBTRL, a software platform for network background traffic replay based on log files applied to IDS testing. NBTRL consists of information extraction module, packet preprocessing module and replay module. This software platform can extract traffic information from log files, control the speed of background traffic replay, process truncated packets, modify MAC address or IP address of packets, and provide a flexible and reusable experimental environment for IDS testing.
Keywords :
information retrieval; program testing; security of data; IDS testing; NBTRL; information extraction module; intrusion detection system; network background traffic replay; packet preprocessing module; replay module; software platform; Communication system traffic control; Computer displays; Computer networks; Data mining; Information security; Intrusion detection; Pervasive computing; Software testing; Telecommunication traffic; Traffic control; IDS Testing; Log; Traffic Replay;
Conference_Titel :
Control Conference, 2007. CCC 2007. Chinese
Conference_Location :
Hunan
Print_ISBN :
978-7-81124-055-9
Electronic_ISBN :
978-7-900719-22-5
DOI :
10.1109/CHICC.2006.4347201
