Title :
Virtual Inline: A Technique of Combining IDS and IPS Together in Response Intrusion
Author :
Wu, Zheng ; Xiao, Debao ; Xu, Hui ; Peng, Xi ; Zhuang, Xin
Author_Institution :
Inst. of Comput. Network & Commun. Technol., CCNU, Wuhan
Abstract :
The Intrusion Detection Systems (IDSs) play an important role in monitoring networks, but they lack abilities in automated intrusion response; the Intrusion Prevention Systems (IPSs) can guard networks in entrance, but they have no abilities in response inner-intranet attacks; many proposals focus on solutions in automated intrusion response, but they still have various problems existed, the main challenge is the accurate measurement of those related factors. This paper presents a virtual inline technique which is based on the technique of the Man in the Middle attack (MITM), it combines the NIDS and NIPS together in providing all-wave protection to networks. This technique integrates the advantages of both IDSs and IPSs, and avoids their shortages; it also avoids those problems baffle our researchers in this field. Empirical experiments show this technique is practicable.
Keywords :
cryptography; intranets; telecommunication security; telecommunication traffic; NIDS; NIPS; automated intrusion response; communication encryption; computer network monitoring; inner-intranet attack; man-in-the-middle attack; network traffic; network-based intrusion detection system; network-based intrusion prevention system; virtual inline technique; Computer crime; Computer science; Computer science education; Delay; Educational technology; Hip; Internet; Intrusion detection; Protection; Telecommunication traffic; Intrusion Detection Systems (IDSs); Intrusion Prevention Systems (IPSs); automated intrusion response; the Man in the Middle attack (MITM); the technique of virtual inline;
Conference_Titel :
Education Technology and Computer Science, 2009. ETCS '09. First International Workshop on
Conference_Location :
Wuhan, Hubei
Print_ISBN :
978-1-4244-3581-4
DOI :
10.1109/ETCS.2009.255
