Using Cisco Network Components to Improve NIDPS Performance

Bul´ajoul, Waleed; James, Anne; Shaikh, Siraj Ahmed; Pannu, Mandeep

doi:10.5121/csit.2016.61012

Cited by 2 publications

(1 citation statement)

References 22 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Bul'ajoul, James and Pannu [65,66] proposed an NIDPS solution for high-speed malicious traffic using QoS (Quality of Service) configuration and parallel technology. They designed a novel security architecture to increase the analytical, detection, and prevention performance of the NIDPS when facing high-speed traffic.…”

Section: Parallelism To Increase Power and Speed Of Defensesmentioning

confidence: 99%

Security challenges and solutions for e-business

James

Bul’ajoul

Shehu

et al. 2018

Information Security: Foundations, Technologies and Applications

View full text Add to dashboard Cite

The advantages of economic growth and increasing ease of operation afforded by e-business and ecommerce developments are unfortunately matched by growth in cyberattacks. This paper outlines the common attacks faced by e-business and describes the defenses that can be used against them. It also reviews the development of newer security defense methods. These are: (1) biometrics for authentication; parallel processing to increase power and speed of defenses; (2) data mining and machine learning to identify attacks; (3) peer-to-peer security using blockchains; (4) enterprise security modelling and security as a service; and (5) user education and engagement. The review finds overall that one of the most prevalent dangers is social engineering in the form of phishing attacks. Recommended counteractions include education and training, and the development of new machine learning and data sharing approaches so that attacks can be quickly discovered and mitigated.

show abstract

Section: Parallelism To Increase Power and Speed Of Defensesmentioning

confidence: 99%

Security challenges and solutions for e-business

James

Bul’ajoul

Shehu

et al. 2018

Information Security: Foundations, Technologies and Applications

View full text Add to dashboard Cite

show abstract

Design of a Novel Network Framework for Traffic Identification by Using Deep Packet Inspection and Machine Learning

Manne¹,

Reddy²,

Naik³

et al. 2022

IJSRST

View full text Add to dashboard Cite

This paper presents an investigation, involving experiments, which shows that current network intrusion, detection, and prevention systems (NIDPSs) have several shortcomings in detecting or preventing rising unwanted traffic and have several threats in high-speed environments. Precise organization traffic recognizable proof is a significant reason for network traffic checking and information investigation, and is the way to work on the nature of client administration. In this paper, through the examination of two organization traffic ID strategies in light of machine learning and profound parcel review, an organization traffic distinguishing proof strategy in view of machine learning and profound bundle examination is proposed. This strategy utilizes profound parcel assessment innovation to distinguish most organization traffic, diminishes the responsibility that should be recognized by machine learning. This paper presents an investigation, involving experiments, which shows that current network intrusion, detection, and prevention systems (NIDPSs) have several shortcomings in detecting or preventing rising unwanted traffic and have several threats in high-speed environments. It shows that the NIDPS performance can be weak in the face of high-speed and high-load malicious traffic in terms of packet drops, outstanding packets without analysis, and failing to detect/prevent unwanted traffic. A novel quality of service (QoS) architecture has been designed to increase the intrusion detection and prevention performance. Our exploration has proposed and assessed an answer involving an original QoS setup in a multi-facet change to sort out parcels/traffic and equal procedures to build the bundle handling speed. The new engineering was tried under various traffic velocities, types, and errands. The trial results show that the design works on the organization and security execution which is can conceal to 8 Gb/s with 0 bundles dropped. This paper likewise shows that this number (8Gb/s) can be improved, yet it relies upon the framework limit which is constantly restricted.

show abstract

Using Cisco Network Components to Improve NIDPS Performance

Abstract: Network Intrusion Detection and Prevention Systems (NIDPSs)

Cited by 2 publications

References 22 publications

Security challenges and solutions for e-business

Security challenges and solutions for e-business

Design of a Novel Network Framework for Traffic Identification by Using Deep Packet Inspection and Machine Learning

Contact Info

Product

Resources

About