Intrusion Detection and Prevention Systems as a Service in Could-based Environment

Alsubhi, Khalid; Aljahdali, Hani Moaiteq

doi:10.14569/ijacsa.2018.090738

Cited by 1 publication

(2 citation statements)

References 37 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In contrast, the results of this research delve into practical IDPS implementation within a networking system environment to defend against specific threats, emphasizing real-world application. The studies cited as [11], [12], [29], [30], [33], [36]- [38], on the other hand, differ significantly from this research outcome. Given these variations in goals and approaches, direct result comparisons can be challenging.…”

Section: E Data Analysismentioning

confidence: 52%

“…To counter these attacks, Intrusion Detection and Prevention Systems (IDPS) have emerged as a crucial tool in safeguarding networks [8]- [10]. These systems effectively detect and mitigate DDoS attacks to prevent service disruption and data compromise [11]. However, one of the challenges IDPS faces is the ability to effectively detect and defend against evolving and unprecedented attacks [12], [13].…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Strengthening Network Security: Evaluation of Intrusion Detection and Prevention Systems Tools in Networking Systems

Prabowo,

Fauziah,

Nahrowi

et al. 2023

IJACSA

View full text Add to dashboard Cite

This study aims to enhance network security by comprehensively evaluating various Intrusion Detection and Prevention Systems tools in networking systems. The objectives of this research were to assess the performance of different IDPS tools in terms of computer resources utilization, Quality of Service metrics namely delay, jitter, throughput, and packet loss, and their effectiveness in countering Distributed Denial of Service attacks, specifically ICMP Flood and SYN Flood. The evaluation used popular IDPS tools, including Snort, Suricata, Zeek, OSSEC, and Honeypot Cowrie. Real attack scenarios were simulated to measure the tools performance. The results indicated CPU and RAM usage variations among the tools, with Snort and Suricata showing efficient resource utilization. Regarding QoS metrics, Snort demonstrated superior performance in delay, jitter, throughput, and packet loss mitigation for both attack types. The implication for further research lies in exploring the optimal configurations and finetuning of IDPS tools to achieve the best possible network security against DDoS attacks. This research provides valuable insights into selecting appropriate IDPS tools for network administrators, cybersecurity professionals, and organizations to fortify their infrastructure against evolving cyber threats.

show abstract