A Pattern matching based Network Intrusion Detection System

Author

Chunyue, Zhou ; Yun, Liu ; Hongke, Zhang

Author_Institution

Inst. of Electron. & Inf. Eng., Beijing JiaoTong Univ.

fYear

2006

fDate

5-8 Dec. 2006

Firstpage

1

Lastpage

4

Abstract

Intrusion detection system (IDS) has recently become a heated research topic due to its capability of preventing attacks from malicious network users. A pattern matching intrusion detection system has been proposed in this paper. The pattern matching based NIDS consists of four modules: collection module, analyze module, response module and attack rule library. We base this system on CIDF architecture. Realizing that string matching is the bottleneck, our system has improved the performance of detection engines due to an improved algorithm based on the current BM algorithm. Testing results demonstrate superior performance in terms of the detection speed of IDS

Keywords

computer networks; security of data; string matching; analyze module; attack prevention; attack rule library; collection module; detection engines; malicious network users; network intrusion detection system; pattern matching; response module; string matching; Costs; Data analysis; Databases; Heat engines; Intrusion detection; Manufacturing; Monitoring; Pattern matching; Protocols; Switches; BM; CIDF; Intrusion Detection; pattern matching;

fLanguage

English

Publisher

ieee

Conference_Titel

Control, Automation, Robotics and Vision, 2006. ICARCV '06. 9th International Conference on

Conference_Location

Singapore

Print_ISBN

1-4244-0341-3

Electronic_ISBN

1-4214-042-1

Type

conf

DOI

10.1109/ICARCV.2006.345459

Filename

4150244