Title :
A Scheme for the Design and Implementation of a Distributed IDS
Author :
Chandradeep, K.B.
Author_Institution :
Dept of Centre for Educ. Technol., IIT Kharagpur, Kharagpur, India
Abstract :
This paper proposes a scheme for the design and implementation of a new security architecture for protecting exposed Intranets or groups of computers in a network from malicious attacks. The proposed scheme presents an approach of building a distributed intrusion detection system for a network by using the network based intrusion detection system sensors at several places in the network and then communicating the alert information generated by the network intrusion detection system sensors to all the hosts present in the network for a dynamic policy update. The dynamic policy is updated using the IPtables for Linux hosts and for Windows hosts the policy update is carried out using a new Windows firewall application that has been developed.
Keywords :
Linux; authorisation; distributed processing; intranets; IP tables; Intranets; Linux hosts; Windows firewall application; distributed intrusion detection systen; malicious attacks; network based intrusion detection system sensors; security architecture; Companies; Computer networks; Educational technology; IP networks; Information security; Intrusion detection; Linux; Protection; Sensor systems; Telecommunication traffic; Distributed intrusion detection system; distributed object application; intrusion detection; packet filtering;
Conference_Titel :
Networks and Communications, 2009. NETCOM '09. First International Conference on
Conference_Location :
Chennai
Print_ISBN :
978-1-4244-5364-1
Electronic_ISBN :
978-0-7695-3924-9
DOI :
10.1109/NetCoM.2009.49
