Title :
Security Implications of Network Address Translation on Intrusion Detection and Prevention Systems
Author :
Sourour, M. ; Adel, Bouallegue ; Tarek, A.
Author_Institution :
Digital Security Unit, Higher Sch. of Commun. (SupCom), Tunisia
Abstract :
Network address translation (NAT) is a technology that allows multiple computers on a LAN to share a single public IP address for accessing the Internet. Without it, the IPv4 protocol´s limited number of available addresses would be pushed to its limits. However, NAT poses a big problem for security and especially for networks protected by intrusion detection systems (IDS) and intrusion prevention systems (IPS). The paper underlines the NAT´s implications on IDS and IPS and proposes a solution that includes the NAT technique in this security infrastructure.
Keywords :
IP networks; Internet; local area networks; security of data; IP protocol; Internet; LAN; intrusion detection systems; intrusion prevention systems; multiple computers; network address translation; public IP address; Communication system security; Computer crime; IP networks; Information security; Internet; Intrusion detection; Local area networks; Network address translation; Protection; Telecommunication traffic;
Conference_Titel :
Network and Service Security, 2009. N2S '09. International Conference on
Conference_Location :
Paris
Print_ISBN :
978-2-9532-4431-1
