APPLYING SOME MATCHING ALGORITHMS FOR SEQUENCE IGNATURE TO ANALYZE AND DETECT ENTRIES INTO SYSTEM NETWORKS

Pham Nguyen Huy Phuong, Dang Le Nam

Abstract


Nowadays, developing and evaluating pattern matching algorithms for the identification of network-attack has been constantly evolving. In this paper, the pattern matching algorithms is deployed by emulating forms of network attacks on intrusion detection system together with firewall IOS/I PS. Additionally, tools for network monitoring such as open source munintools,are also used to analyze and evaluate the performance of network-attack. Next, the time of pattern identification in the Snort's machine, and the performance of Snort as well as the number of packets passing through Snort, the amount of alerts per second, connection speed in real time, the percentage of received data in pattern matching process, etc. are also measured based on intelligent algorithms built in Snort. This aims to offer a method of choosing different algorithms for different forms of intrusion detection.


Keywords


IDS/IPS; Snort; Pattern matching.



DOI: http://dx.doi.org/10.37569/DalatUniversity.3.2.252(2013)

Refbacks

  • There are currently no refbacks.


Copyright (c) 2013 Pham Nguyen Huy Phuong, Dang Le Nam

Creative Commons License
This work is licensed under a Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International License.
Editorial Office of DLU Journal of Science
Room.15, A25 Building, 01 Phu Dong Thien Vuong Street, Dalat, Lamdong
Email: tapchikhoahoc@dlu.edu.vn - Phone: (+84) 263 3 555 131

Creative Commons License
Based on Open Journal Systems
Developed by Information Technology Department