Robust Design and Implementation of a Network IntrusionDetection System

Abstract

A Network Intrusion Detection System (NIDS) is an essential component of network security that helps to identify and responds to potential security branches and attacks within a network infrastructure. Computer security has become a challenge and various tools and mechanisms have been developed in order to guarantee a safety level up to the requirements of modern life. Information security is of great concern these days due to the activities of hackers and malicious users on the Internet. Securing informationhas become a critical issue and is of growing concern as computer systems worldwide become increasingly vulnerable to the rapid increase in the volume of information being transmitted across networks and over the Internet. It describes various approaches of detecting the attacks and preventing the attacks with different techniques such as pattern matching, protocol decoding, defining rules and signatures etc. This research work introduced a technique which provided a robust intrusion detection system against attackers. The framework consists of a Network Intrusion Detection System (NIDS) for detection of traffic to and from a given network, a Host based Intrusion Detection System (HIDS) and a line for possible Intrusion Prevention Systems (IPS). The technique was developed by modeling network using a network simulation software; since a real life implementation is very costly. The result showed that the technique provided an intrusion detection system that can be used to monitor user’s activities on the Internet and other networks with relatively minimal error.