An Evaluation Of Scan-Detection Algorithms In Network Intrusion Detection Systems

- Barnett, Richard J, Irwin, Barry V W

Title
An Evaluation Of Scan-Detection Algorithms In Network Intrusion Detection Systems
Creator
Barnett, Richard J, Irwin, Barry V W
Date
2008
Type
text
Type
article
Identifier
http://hdl.handle.net/10962/428701
Identifier
vital:72530
Identifier
https://digifors.cs.up.ac.za/issa/2008/Proceedings/Research/29.pdf
Description
Network Intrusion Detection Systems are becoming more prevalent as devices to protect a network. However, the methods they use for some forms of detection are flawed. This paper builds upon existing research by van Riel and Irwin which illustrated these flaws in Snort and Bro's scan-detection engines. Indeed, it has been ascertained that a number of different scanning techniques are not identified by either Snort or Bro. This paper highlights current research into the improvement of these scan detection algorithms and presents insight into how this re-search is being conducted at Rhodes University. This research will im-prove on the scan detection engines in Snort and Bro, permitting them to be used in a production environment without fear of succumbing to the false negative problem which currently exists.
Format
12 pages, pdf
Language
English
Relation
Information Security for South Africa, Barnett, R.J. and Irwin, B., An Evaluation Of Scan-Detection Algorithms In Network Intrusion Detection Systems. In ISSA (pp. 1-12), Information Security for South Africa volume 2008 number 1 12 2008 2330-9881
Rights
Publisher
Rights
Use of this resource is governed by the terms and conditions of the IEEE Xplore Terms of Use Statement (https://ieeexplore.ieee.org/Xplorehelp/overview-of-ieee-xplore/terms-of-use)
  • Hits: 85
  • Visitors: 92
  • Downloads: 8

Collections

Irwin, Barry V W (Prof)
RU Department of Computer Science
SDG 09. Industry, Innovation and Infrastructure
Thumbnail File Description Size Format
SOURCE1 An Evaluation of Scan-Detection Algorithms in Network Intrusion Detection Systems.pdf 736 KB Adobe Acrobat PDF
  • Disclaimer
  • Privacy
  • Copyright
  • Contact