Metrics
53 Record Views
Journal article
Intrusion detection model based on selective packet sampling
EURASIP Journal on Information Security, Vol.2011, 2
09/01/2011
Web of Science ID: WOS:000215281400007
Abstract
Recent experimental work by Androulidakis and Papavassiliou (IET Commun 2(3):399, 2008; IEEE Netw 23(1):6, 2009) has shown that it is possible to maintain a high level of network security while selectively inspecting packets for the existence of intrusive activity, thereby resulting in a minimal amount of processing overhead. In this paper, a statistical approach for the modeling of network intrusions as Markov processes is introduced. The theoretical findings presented here confirm the earlier experimental results of Androulidakis and Papavassiliou. A common notion about network intrusion detection systems is that every packet arriving into a network must be inspected in order to prevent intrusions. This investigation, together with the earlier experimental results, disproves that notion. Additional experimental testing of a corporate local area network is reported.
Details
- Title
- Intrusion detection model based on selective packet sampling
- Publication Details
- EURASIP Journal on Information Security, Vol.2011, 2
- Resource Type
- Journal article
- Publisher
- Springer
- Copyright
- © 2011 Bakhoum; licensee Springer. This is an Open Access article distributed under the terms of the Creative Commons Attribution License (http://creativecommons.org/licenses/by/2.0), which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited.
- Identifiers
- WOS:000215281400007; 99380175880206600
- Academic Unit
- Hal Marcus College of Science and Engineering ; Dr. Muhammad Harunur Rashid Department of Electrical and Computer Engineering
- Language
- English