INSPIRING FUTURES

Enhancing intrusion detection via an active target host.

Abimbola, Abiola, Munoz, Jose and Buchanan, William J (2006) Enhancing intrusion detection via an active target host. In: IEEE ICTe Africa 2006. IEEE Computer Society Press, Kenya.

[img] PDF
Available under License Creative Commons Attribution Non-commercial.

Download (167kB)

    Abstract/Description

    Over the past decade, there have been increases in network attacks. These attacks are typically at-tempts to compromise the integrity, confidentiality or availability of networked resources. In other to reduce these attacks, Intrusion Detection Systems (IDS) were introduced. These systems monitor and analyse network traffic, and try to detect network attacks, and, in response, execute counter-measures, which overcome current security weaknesses. In this paper we present a quick review of IDS and their vulnerabilities, discuss, in detail, the performance unreliability of IDS’s against end-to-end encrypted attacks, network fragmented attacks and denial of service exploitation of pro-gramming flaws. These vulnerabilies are illustrated in order to verify and validate the discussion. The experiments measure the performance of Snort, which is a network IDS which detecting the stated network attacks. Our experimental findings show that Snort could only detect 50% denial of service exploitation of programming flaws and 0% end-to-end encrypted attacks.

    Item Type: Book Section
    Uncontrolled Keywords: network attacks; integrity; confidentiality; intrusion detection system; countermeasure; performance; unreliability; validation; verification and computer-based diagrams;
    University Divisions/Research Centres: Faculty of Engineering, Computing and Creative Industries > School of Computing
    Dewey Decimal Subjects: 000 Computer science, information & general works > 000 Computer science, knowledge & systems > 006 Special Computer Methods
    Library of Congress Subjects: Q Science > QA Mathematics > QA76 Computer software
    Item ID: 3977
    Depositing User: Professor Bill Buchanan
    Date Deposited: 21 Dec 2010 11:47
    Last Modified: 12 Jan 2011 04:56
    URI: http://researchrepository.napier.ac.uk/id/eprint/3977

    Actions (login required)

    View Item

    Document Downloads

    More statistics for this item...

    Edinburgh Napier University is a registered Scottish charity. Registration number SC018373