Abstract
Major challenge for organizations in today’s era is to meet the security needs. Techniques for logging data, detecting intrusions, preventing intrusions have been evolving for years. This paper presents a solution to combine logging, and network based intrusion detection and prevention system. The system has been developed considering the Software Engineering framework of requirements analysis, design, implementation, and testing. For IPS open source tool snort is configured in inline mode, so that sensors captures packets and drops them in case of any suspicious activity is observed. Signatures for Detection and prevention help IPS in alerting the administrator and dropping the packet. Logging of dropped packets is done using Splunk. In the process it provides for cost effective, customizable and scalable solution alternative to Organizations.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
Similar content being viewed by others
References
Rodríguez, L.C., Mora, M., Alvarez, F.J.: A Descriptive Comparative Study of the Evolution of Process Models of Software Development Life Cycles (PM-SDLCs). In: Proc. of Mexican International Conference on Computer Science 2009, pp. 298–303 (2009)
Unphon, H.: Making use of architecture throughout the software life cycle - How the build hierarchy can facilitate product line development. In: Proc. of ICSE Workshop on Sharing and Reusing Architectural Knowledge 2009, pp. 41–48 (2009)
Wild, C., Maly, K., Zhang, C., Roberts, C.C., Rosca, D., Taylor, T.: Software engineering life cycle support-decision based systems development. In: Proceedings of IEEE Region Ninth Annual International Conference TENCON 1994, vol. 2, pp. 781–784 (1994)
Zhou, Z., Zhongwen, C., Tiecheng, Z., Xiaohui, G.: The study on network intrusion detection system of Snort. In: 2nd International Conference on Networking and Digital Society (ICNDS), vol. 2, pp. 194–196 (2010)
Ezin, E.C., Djihountry, H.A.: Java-Based Intrusion Detection System in a Wired Network (IJCSIS) International Journal of Computer Science and Information Security 9(11), 33–40 (2011)
Tan, L., Sherwood, T.: A High Throughput String Matching Architecture for Intrusion Detection and Prevention. In: Proceedings of the 32nd Annual International Symposium on Computer Architecture, pp. 112–122 (2005)
Ahmed, M., Pal, R., Hossain, M., Bikas, A.N., Hasan, K.: NIDS:A network based approach to intrusion detection and prevention. In: 2009 International Association of Computer Science and Information Technology - Spring Conference, IACSIT-SC, pp. 141–144 (2009)
Kumar, A., Fernandez, E.B.: Security Patterns for Intrusion Detection Systems. In: 1st LACCEI International Symposium on Software Architecture and Patterns (LACCEI-ISAP-MiniPLoP 2012), Panama City, Panama, July 23-27 (2012)
Singh, S., Bansal, M.: Improvement of Intrusion Detection System in Data Mining using Neural Network. International Journal of Advanced Research in Computer Science and Software Engineering 3(9) (September 2013)
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2015 Springer International Publishing Switzerland
About this paper
Cite this paper
Kenkre, P.S., Pai, A., Colaco, L. (2015). Real Time Intrusion Detection and Prevention System. In: Satapathy, S., Biswal, B., Udgata, S., Mandal, J. (eds) Proceedings of the 3rd International Conference on Frontiers of Intelligent Computing: Theory and Applications (FICTA) 2014. Advances in Intelligent Systems and Computing, vol 327. Springer, Cham. https://doi.org/10.1007/978-3-319-11933-5_44
Download citation
DOI: https://doi.org/10.1007/978-3-319-11933-5_44
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-11932-8
Online ISBN: 978-3-319-11933-5
eBook Packages: EngineeringEngineering (R0)