Title :
An active network-based intrusion detection and response systems
Author :
Huang, Han-Pang ; Chang, Chia-Mmg
Author_Institution :
Dept. of Mech. Eng., Nat. Taiwan Univ., Taipei, Taiwan
Abstract :
The network security is getting more important because of increasing worms and network attacks. More and more security mechanisms are introduced to protect from attack, such as firewalls and intrusion detection systems (IDS). This paper proposes an active network programming model. Comparing to a traditional network, active network gives the nodes programmable ability. It adopts the active network technology. The response, service deployment and service update schemes rely on this technology. The proposed intrusion detection and response system (WRS) can stop attacks at the first line and respond as fast as possible to reduce the damage caused by intruders. It provides the abilities of detection, report and response. The proposed prototype system adopts the novel data mining technology-support vector machine to enhance the detection function.
Keywords :
data mining; security of data; support vector machines; data mining technology; intrusion detection systems; network programming model; network security; network-based intrusion detection; response systems; security mechanisms; support vector machine; Computer networks; Internet; Intrusion detection; Laboratories; Mechanical engineering; Microstrip; Portable media players; Protection; Robot kinematics; Scanning probe microscopy;
Conference_Titel :
Networking, Sensing and Control, 2004 IEEE International Conference on
Print_ISBN :
0-7803-8193-9
DOI :
10.1109/ICNSC.2004.1297138
