ANALYSING AND MONITORING OF NETWORK IDS USING INTRUSION DETECTION
Journal: International Journal of Computer Engineering and Technology (IJCET) (Vol.8, No. 3)Publication Date: 2017-05-06
Authors : Sajani J; S. Manikandan;
Page : 20-27
Keywords : Intrusion Detection; NIDS; Network Traffic; Service Attack.;
Abstract
A Network intrusions detection system (NIDS) is an intrusion detection system that tries to detect malicious activity such as denial of service attacks, port scans or even attempts to crack into computers by monitoring network traffic. The NIDS does this by reading all the incoming packets and trying to find suspicious patterns. If for example, a large number of TCP connection requests to a very large number of different ports are observed, one could assume that there is someone committing a “port scan” at some of the computer(s) in the network .It also (mostly) tries to detect incoming shell codes in the same matter that an ordinary intrusion detection system does. A NIDS is not limited to inspecting incoming network traffic only. Often valuable information about an ongoing intrusion can be learned from outing or local traffic as well .Some attacks might even be staged from the inside of the monitored network or network segment, and are therefore not regarded as incoming traffic at all. Often, network intrusion detection system work with other system as well. They can for example update some firewalls' blacklist with the IP addresses of computer used by (suspected) crackers.
Other Latest Articles
- DIFFERENTIAL PRIVACY IN BIG DATA ANALYTICS FOR HAPTIC APPLICATIONS
- IMPROVISATION OF K-NN CLASSIFIER ON SEMANTICALLY SECURE ENCRYPTED RELATIONAL DATA
- A ENHANCE TECHNIQUE TO EVALUATE PERFORMANCE OF TRANSACTIONS IN DISTRIBUTED DATABASE ENVIRONMENT
- A PROTEIN DATABASE AS DAAS IN THE CLOUD ENVIRONMENT
- IMAGE ENHANCEMENT TECHNIQUES ON FUZZY DOMAIN: A REVIEW
Last modified: 2017-08-07 15:41:34