Skip to main content
SpringerLink
Log in

Implementation and Performance Evaluation of High-Performance Intrusion Detection and Response System

  • Conference paper
Computational Science and Its Applications – ICCSA 2004 (ICCSA 2004)

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 3043))

Included in the following conference series:

  • 602 Accesses

Abstract

Many Intrusion Detection Systems are developed till now to respond network attacks, which is increasing more and more in number and has polymorphic/metamorphic nature. Most of these systems, however, have problem to process traffic volume that is increasing continuously whereby systems are designed and developed only for real-time security analysis over Fast Ethernet network. Therefore it is necessary to research on security analysis mechanism which is capable to process high traffic volume over the high speed network such as Gigabit Ethernet network. This paper proposes Gigabit Intrusion Detection System to detect and respond attacks on the high speed network. It is possible through the pattern matching functions which is based on the packet header and data that is processed in the system kernel level and FPGA Logic. Our proposed Gigabit Intrusion Detection System has hardware architecture that can provide efficient way to detect and respond variant attack behaviors on high-speed and high volume large-scale network.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 74.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Kim, B.-K., Jang, J.-S., Sohn, S.-W., Chung, T.M.: Design and Implementation of Intrusion Detection System base on Object-Oriented Modeling. In: Proceedings of the International Conference on Security and Management, June, 2002, pp. 10–15 (2002)

    Google Scholar 

  2. Kruegel, C., Valeur, F., Vigna, G., Kemmerer, R.: Stateful intrusion detection for high-speed networks. In: Proceedings of the IEEE Symposium on Security and Privacy, pp. 266–274 (2002)

    Google Scholar 

  3. ISS. RealSecure Gigabit Network Sensor (September 2002) http://www.iss.net/products_services/enterprise_protection/rsnetwork/gigabitsensor.php

  4. Symantec. ManHunt (2002), http://enterprisesecurity.symantec.com /products/products.cfm? ProductID=156

  5. CISCO. CISCO Intrusion Detection System. Technical Information (November 2001)

    Google Scholar 

  6. Roesch, M.: Snort-Lightweight Intrusion Detection for Networks. In: Proceedings of the USENIX LISA 1999 Conference (November 1999)

    Google Scholar 

  7. Ranum, M.: Burglar Alarms for Detecting Intrusions, NFR Inc. (1999)

    Google Scholar 

  8. Ptacek, T., Newsham, T.: Insertion, Evasion, and Denial of Service: Eluding Network Intrusion Detection, Secure Networks Inc. (1998)

    Google Scholar 

  9. Debar, H., Dacier, M., Wespi, A.: Research Report Towards a Taxonomy of Intrusion Detection Systems, Technical Report RZ 3030, IBM Research Division, Zurich Research Laboratory (June 1998)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Institute of Information Technology Assessment, 52 Eoeun-Dong, Yuseoung-Gu, Daejeon, 305-333, KOREA

    Hyeong-Ju Kim

  2. Electronics and Telecommunications Research Institute, 161 Gajeong-Dong, Yuseoung-Gu, Daejeon, 305-350, KOREA

    Byoung-Koo Kim & Ik-Kyun Kim

Authors
  1. Hyeong-Ju Kim
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Byoung-Koo Kim
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Ik-Kyun Kim
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Department of Chemistry, University of Perugia, Via Elce di Sotto, 8, I-06123, Perugia, Italy

    Antonio Laganá

  2. Department of Computer Science, University of Calgary, 2500 University Drive N.W., T2N 1N4, Calgary, AB, Canada

    Marina L. Gavrilova

  3. William Norris Professor, Head of the Computer Science and Engineering Department, University of Minnesota, USA

    Vipin Kumar

  4. School of Computing, Soongsil University, Seoul, Korea

    Youngsong Mun

  5. OptimaNumerics Ltd., Cathedral House, 23-31 Waring Street, BT1 2DX, Belfast, UK

    C. J. Kenneth Tan

  6. Department of Mathematics and Computer Science, University of Perugia, via Vanvitelli, 1, I-06123, Perugia, Italy

    Osvaldo Gervasi

Rights and permissions

Reprints and permissions

Copyright information

© 2004 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Kim, HJ., Kim, BK., Kim, IK. (2004). Implementation and Performance Evaluation of High-Performance Intrusion Detection and Response System. In: Laganá, A., Gavrilova, M.L., Kumar, V., Mun, Y., Tan, C.J.K., Gervasi, O. (eds) Computational Science and Its Applications – ICCSA 2004. ICCSA 2004. Lecture Notes in Computer Science, vol 3043. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-24707-4_112

Download citation

  • DOI: https://doi.org/10.1007/978-3-540-24707-4_112

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-22054-1

  • Online ISBN: 978-3-540-24707-4

  • eBook Packages: Springer Book Archive

Publish with us

Policies and ethics

Search

Navigation