Concurrency issues in rule-based Network Intrusion Detection Systems


GÜRKAN M. A., ŞENER C.

1st International Conference on Security of Information and Networks, SIN 2007, Gazimagusa, Türkiye, 7 - 10 Mayıs 2007, ss.146-150 identifier

  • Yayın Türü: Bildiri / Tam Metin Bildiri
  • Basıldığı Şehir: Gazimagusa
  • Basıldığı Ülke: Türkiye
  • Sayfa Sayıları: ss.146-150
  • Orta Doğu Teknik Üniversitesi Adresli: Evet

Özet

As the bandwidth of present networks gets larger than the past, the demand of Network Intrusion Detection Systems (NIDS) that function in real time becomes the major requirement for high-speed networks. If these systems are not fast enough to process all network traffic passing, some malicious security violations may take role using this drawback. In order to make that kind of applications schedulable, someconcurrency mechanism is introduced to the general flowchart of their algorithm. The principal aim is to fully utilize each resource of the platform and overlap the independent parts of the applications. In the sense of this context, a generic multithreaded infrastructure is designed and proposed. The concurrency metrics of the new system is analyzed and compared with the original ones. © 2008 Atilla Elçi.