Advertisement

WEMA to Speed up NIDS Packet Header Detection Engine

  • Adnan A. HnaifEmail author
Conference paper
Part of the Advances in Intelligent Systems and Computing book series (AISC, volume 533)

Abstract

The traditional firewall provides the first level of defense for computer networks and prevents unauthorized people to access the internal networks from the external attacks. Thus, the Network Intrusion detection System (NIDS) is complementary to the firewall. One of the major functions of NIDS is to act as misuse detection. In This paper we used A Neural network with multi-connect architecture and Weighted Exact Matching Algorithm (WEMA) to enhance the speed of matching process between the incoming packets header and SNORT-NIDS rule sets.

Keywords

NIDS Exact string matching algorithms WEMA 

Notes

Acknowledgment

I would like to thank Al-zaytoonah University of Jordan for supporting this research paper.

References

  1. 1.
    Abedin, M., Nessa, S., Khan, L., Thuraisingham, B.: Detection and resolution of anomalies in firewall policy rules. In: Damiani, E., Liu, P. (eds.) Data and Applications Security 2006. LNCS, vol. 4127, pp. 15–29. Springer, Heidelberg (2006)CrossRefGoogle Scholar
  2. 2.
    Snort – The open source network intrusion. Detection system. http://www.snort.org
  3. 3.
    Coit, C.J., Staniford, S., Mchlerney, J.: Towards faster string matching for intrusion detection or exceeding the speed of snort, pp. 367–373. IEEE (2001)Google Scholar
  4. 4.
    Xiang, Y.: Protecting information infrastructure from DDoS attacks by MADF. Int. J. High Perform. Comput. Netw. 4(5/6), 357–367 (2006)CrossRefGoogle Scholar
  5. 5.
    Deri, L.: High-speed dynamic packet filtering. J. Netw. Syst. Manag. (ACM) 15, 401–415 (2007)CrossRefGoogle Scholar
  6. 6.
    Lecroq, C.C.: Handbook of Exact String matching Algorithm. King’s College Publications, London (2004). ISBN 0954300645zbMATHGoogle Scholar
  7. 7.
    Kaream, E.: Alternative hopfield neural network with multi-connect architecture. Journal of College of Education, Computer Department, Al-mustansiryah university, Baghdad, Iraq (2004)Google Scholar
  8. 8.
    Hlayel, A.A., Hnaif, A.A.: An algorithm to improve the performance of string matching. J. Inf. Sci. (2014). doi: 10.1177/0165551513519039. Accessed 14 Jan 2014

Copyright information

© Springer International Publishing AG 2017

Authors and Affiliations

  1. 1.Computer Networks DepartmentAl-Zaytoonah University of JordanAmmanJordan

Personalised recommendations