Weaknesses and strengths analysis over network-based intrusion detection and prevention systems

Author

Guillen, Edward ; Padilla, Daniel ; Colorado, Yudy

Author_Institution

Telecommun. Eng. Dept., Nueva Granada Mil. Univ., Bogota, Colombia

fYear

2009

fDate

10-11 Sept. 2009

Firstpage

1

Lastpage

5

Abstract

Network-based intrusion detection and prevention systems -NIDS /NIPS- have been widely implemented in order to build layered information security infrastructures. Many intrusion detection and prevention algorithms have been developed and its operation modes imply benefits and drawbacks that are not taken into account when choosing a network IDS/IPS. This paper assesses the network security provided by five NIDS/NIPS software solutions, by analyzing the protection against malicious traffic. Security platforms against network intrusion such as Snort Inline, Stonegate IPS, Strataguard, Intrupro and Packetalarm are tested and analyzed.

Keywords

security of data; telecommunication security; telecommunication traffic; Intrupro; NIDS/NIPS software solutions; Packetalarm; Snort Inline; Stonegate IPS; Strataguard; layered information security infrastructures; malicious traffic; network security; network-based intrusion detection; network-based prevention systems; strengths analysis; vulnerability analysis; weakness analysis; Data security; Databases; Decoding; Engines; Information security; Intrusion detection; Military communication; Protection; Telecommunication traffic; Testing; Intrusion Detection; Intrusion Prevention; Network Security; Vulnerabilities Analysis;

fLanguage

English

Publisher

ieee

Conference_Titel

Communications, 2009. LATINCOM '09. IEEE Latin-American Conference on

Conference_Location

Medellin

Print_ISBN

978-1-4244-4387-1

Electronic_ISBN

978-1-4244-4388-8

Type

conf

DOI

10.1109/LATINCOM.2009.5305047

Filename

5305047