Title :
Intrusion prevention system design
Author :
Zhang, Xinyou ; Li, Chenzhong ; Zheng, Wenbibn
Author_Institution :
Coll. of Comput. Sci. & Eng., China Univ. of Electron. Sci. & Techonology, Chengdu, China
Abstract :
It is one of the good solutions for improving network security to integrate many kinds of security techniques. Firewall and intrusion detection system can enforce security of the network effectively, but there are also drawbacks existing in themselves. Intrusion prevention system (IPS) is a technique combining the techniques of the firewall with that of the IDS properly. The characters of the IPS are introduced firstly in this paper, and then a scenario of IPS based network is described. Finally, a distributed IPS: IPS design based on SNMP is put forward, the function and implementation of each part of IPS is explained in detail.
Keywords :
authorisation; computer network management; network operating systems; telecommunication security; IPS based network; distributed IPS; firewall; intrusion detection system; intrusion prevention system; network security; Intrusion detection;
Conference_Titel :
Computer and Information Technology, 2004. CIT '04. The Fourth International Conference on
Print_ISBN :
0-7695-2216-5
DOI :
10.1109/CIT.2004.1357226
