Comparative study and analysis of network intrusion detection tools

Bhosale, Dhanashri Ashok; Mane, Vanita

doi:10.1109/icatcct.2015.7456901

Cited by 30 publications

(9 citation statements)

References 4 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Snort detects network intrusion such as Dos, DDos, port scans, nmap scans, SBM probes, CGI attacks, and NetBIOS queries. [127]. Snort consists of different components including packet capture module, packet decoder, preprocessors, detection engine, logging and alerting system, and output module.…”

Section: A Snortmentioning

confidence: 99%

See 1 more Smart Citation

A Comprehensive Systematic Literature Review on Intrusion Detection Systems

Ozkan-Okay¹,

Samet

Aslan

et al. 2021

IEEE Access

View full text Add to dashboard Cite

Section: A Snortmentioning

confidence: 99%

“…It is an open source IDS tool which provides a powerful analysis engine, rootkit detection, Windows registry checking, and real time alert and response [127]. In addition, the OSSEC also provides checklists which frequently validate the significant files from time to time.…”

Section: Ossecmentioning

confidence: 99%

A Comprehensive Systematic Literature Review on Intrusion Detection Systems

Ozkan-Okay¹,

Samet

Aslan

et al. 2021

IEEE Access

View full text Add to dashboard Cite

“…Other software tools can be used for this purpose [15]. In [16], it is claimed that the signature-based Snort is not suitable for advanced customization and high-speed networks because of its simplicity and low-end nature. Suricata is recommended as a multi-thread architecture that can cope well with anomalous situations and large-extent customization.…”

Section: Performance Analysismentioning

confidence: 99%

Experimental load test statistics for the selected IPS tools on low-performance IoT devices

Zitta

Lucki

Vojtěch

et al. 2019

Journal of Electrical Engineering

View full text Add to dashboard Cite

The goal of this paper is to propose a testing procedure for selected intrusion prevention systems (IPS) in a realistic network traffic in terms of their suitability on a given hardware microcomputers for low-performance devices for internet of things (IoT). We perform an IPS research in terms of resource usage in order to establish a universal procedure of checking, whether a given microcomputer controlling IoT devices (often in overloaded state) can additionally burden the installation and start-up of IPS. The experiment is repeated on several boards under overload condition to determine the maximum data rate, above which transmission degrades. The presented testing method is an exemplary tool for IoT applications concerning the security of embedded devices with low performance.

show abstract

“…To improve the detection accuracy, the commercial network intrusion detection system [18,19] abstracted the characteristics of network attack using multiple algorithm and created a misuse detection model of network attacks. The network intrusion detection system based on misuse detection has high detection efficiency and low probability of false alarm.…”

Section: Related Workmentioning

confidence: 99%

A Security Situation Prediction Algorithm Based on HMM in Mobile Network

Liang

Long

Zuo

et al. 2018

Wireless Communications and Mobile Computing

View full text Add to dashboard Cite

The increasingly severe network security situation brings unanticipated challenges to mobile networking. Traditional HMM (Hidden Markov Model) based algorithms for predicting the network security are not accurate, and to address this issue, a weighted HMM based algorithm is proposed to predict the security situation of the mobile network. The multiscale entropy is used to address the low speed of data training in mobile network, whereas the parameters of HMM situation transition matrix are also optimized. Moreover, the autocorrelation coefficient can reasonably use the association between the characteristics of the historical data to predict future security situation. Experimental analysis on DARPA2000 shows that the proposed algorithm is highly competitive, with good performance in prediction speed and accuracy when compared to existing design.

show abstract

Comparative study and analysis of network intrusion detection tools

Cited by 30 publications

References 4 publications

A Comprehensive Systematic Literature Review on Intrusion Detection Systems

A Comprehensive Systematic Literature Review on Intrusion Detection Systems

Experimental load test statistics for the selected IPS tools on low-performance IoT devices

A Security Situation Prediction Algorithm Based on HMM in Mobile Network

Contact Info

Product

Resources

About