Title :
The Design of Cooperative Intrusion Detection System
Author :
Guojun, Zhang ; Liping, Chen ; Weitao, Ha
Author_Institution :
Center of Network Eng. Technol., Weinan Teachers Univ., Weinan, China
Abstract :
The next generation Internet protocol IPv6 brings a new challenge to the information security. We present a cooperative intrusion detection system based on IPv6 to address this challenge. Such a system consists of fours parts i.e. data flow tracking and analysis, capturing packets and rules matching, disaster recovery, and blocking. The technique of cooperative intrusion detection is introduced into the system for realizing the coordination control among parts. The simulations show that the percentage of false negative of the system is around 5.1% and the percentage of false positive is around 7.9%. The system has a good detection rating. If the LAN suffers a large scale terrible intrusion, the system will cut off the sub-network by a block-out algorithm.
Keywords :
Internet; data flow analysis; local area networks; security of data; IPv6; LAN; cooperative intrusion detection system; data flow analysis; data flow tracking; design; disaster recovery; information security; next generation Internet protocol; rules matching; Collaboration; Educational institutions; Fires; Internet; Intrusion detection; Protocols; IPv6; cooperative intrusion detection; security;
Conference_Titel :
Computational Intelligence and Security (CIS), 2011 Seventh International Conference on
Conference_Location :
Hainan
Print_ISBN :
978-1-4577-2008-6
DOI :
10.1109/CIS.2011.173
