Title :
Simulation, optimisation and integration of Covert Channels, Intrusion Detection and packet filtering systems
Author :
Frikha, Lilia ; Trabelsi, Zouheir ; Tabbane, Sami
Author_Institution :
Ecole Super. des Commun. de Tunis, Ariana, Tunisia
Abstract :
In a communication network, an advanced security system should include three security processes, namely a packet filter (Firewall), an intrusion detection system (IDS), and a covert channels detection system (CCDS). The Firewall filters the incoming and outgoing network traffic. The IDS detects and stops attacks, such as denial of service (DoS) attacks. Covert channels allow individuals to communicate undetectable and exchange hidden information. A CCDS detects and stops covert channels. However, till now, security systems do not include dedicated processes for covert channel detection. In this paper we propose an optimized order regarding the execution of the three processes, and evaluate the system´s performance when the LAN network is under different types of attacks. The results show that the proposed order enhances the processing time performance of the system.
Keywords :
local area networks; packet radio networks; security of data; CCDS detects; LAN network; communication network; covert channels detection system; denial of service attacks; intrusion detection; packet filtering systems; Charge coupled devices; Communication networks; Communication system security; Computer crime; Filtering; Filters; Information security; Intrusion detection; System performance; Telecommunication traffic; Covert channel system; Firewall; Intrusion Detection TCP/IP protocols;
Conference_Titel :
Information Infrastructure Symposium, 2009. GIIS '09. Global
Conference_Location :
Hammemet
Print_ISBN :
978-1-4244-4623-0
Electronic_ISBN :
978-1-4244-4624-7
DOI :
10.1109/GIIS.2009.5307102
