WEMA to Speed up NIDS Packet Header Detection Engine
The traditional firewall provides the first level of defense for computer networks and prevents unauthorized people to access the internal networks from the external attacks. Thus, the Network Intrusion detection System (NIDS) is complementary to the firewall. One of the major functions of NIDS is to act as misuse detection. In This paper we used A Neural network with multi-connect architecture and Weighted Exact Matching Algorithm (WEMA) to enhance the speed of matching process between the incoming packets header and SNORT-NIDS rule sets.
KeywordsNIDS Exact string matching algorithms WEMA
I would like to thank Al-zaytoonah University of Jordan for supporting this research paper.
- 2.Snort – The open source network intrusion. Detection system. http://www.snort.org
- 3.Coit, C.J., Staniford, S., Mchlerney, J.: Towards faster string matching for intrusion detection or exceeding the speed of snort, pp. 367–373. IEEE (2001)Google Scholar
- 7.Kaream, E.: Alternative hopfield neural network with multi-connect architecture. Journal of College of Education, Computer Department, Al-mustansiryah university, Baghdad, Iraq (2004)Google Scholar
- 8.Hlayel, A.A., Hnaif, A.A.: An algorithm to improve the performance of string matching. J. Inf. Sci. (2014). doi: 10.1177/0165551513519039. Accessed 14 Jan 2014