Title :
Integrating Artificial Intelligence into Snort IDS
Author :
Fang, Xianjin ; Liu, Lingbing
Author_Institution :
Sch. of Comput. Sci. & Eng., Anhui Univ. of Sci. & Technol., Huainan, China
Abstract :
Snort is an open source network intrusion detection and prevention system (IDS/IPS) utilizing a rule-driven language, its shortcoming is unable to detect new attacks. This paper explores how to integrate Artificial Intelligence into Snort IDS/IPS, which enables IDS/IPS adapt to networks and detect anomalies. As for preprocessors of Snort IDS, a learning algorithm such as artificial neural network (ANN) is integrated into it. So Artificial Intelligence alleviates some of the security professionals´ work load by first learning about a network and gauging reactions from a security professional to reduce false positives, and second, by adapting to changes in the network to identify new attacks.
Keywords :
computer network security; learning (artificial intelligence); neural nets; public domain software; Snort IDS; artificial intelligence; artificial neural network; intrusion prevention system; learning algorithm; open source network intrusion detection; rule driven language; security professional; Artificial neural networks; Engines; Feature extraction; IP networks; Learning systems; Neurons;
Conference_Titel :
Intelligent Systems and Applications (ISA), 2011 3rd International Workshop on
Conference_Location :
Wuhan
Print_ISBN :
978-1-4244-9855-0
Electronic_ISBN :
978-1-4244-9857-4
DOI :
10.1109/ISA.2011.5873435
