Title :
A Pattern matching based Network Intrusion Detection System
Author :
Chunyue, Zhou ; Yun, Liu ; Hongke, Zhang
Author_Institution :
Inst. of Electron. & Inf. Eng., Beijing JiaoTong Univ.
Abstract :
Intrusion detection system (IDS) has recently become a heated research topic due to its capability of preventing attacks from malicious network users. A pattern matching intrusion detection system has been proposed in this paper. The pattern matching based NIDS consists of four modules: collection module, analyze module, response module and attack rule library. We base this system on CIDF architecture. Realizing that string matching is the bottleneck, our system has improved the performance of detection engines due to an improved algorithm based on the current BM algorithm. Testing results demonstrate superior performance in terms of the detection speed of IDS
Keywords :
computer networks; security of data; string matching; analyze module; attack prevention; attack rule library; collection module; detection engines; malicious network users; network intrusion detection system; pattern matching; response module; string matching; Costs; Data analysis; Databases; Heat engines; Intrusion detection; Manufacturing; Monitoring; Pattern matching; Protocols; Switches; BM; CIDF; Intrusion Detection; pattern matching;
Conference_Titel :
Control, Automation, Robotics and Vision, 2006. ICARCV '06. 9th International Conference on
Conference_Location :
Singapore
Print_ISBN :
1-4244-0341-3
Electronic_ISBN :
1-4214-042-1
DOI :
10.1109/ICARCV.2006.345459
