Viable Network Intrusion Detection (Paperback)
Robin SommerNetwork intrusion detection systems (NIDS) continuously monitor network traffic for malicious activity, raising alerts when detecting attacks. However, high-performance Gbps networks pose major challenges for these systems, and despite vendor promises they often fail to work reliably in such environments. In this work, we set out to understand the trade-offs involved in network intrusion detection, and we mitigate their impact on operational security monitoring. We base our study on extensive experience with several large-scale network environments where immense traffic diversity requires any NIDS to deal robustly with unexpected situations. We devise new mechanisms for a popular open-source NIDS that allow the operator to trade-off the quality of the detection with the system's resource demands, and we enable the NIDS to transparently share its state across instances, thereby multiplying the available amount of resources. We also improve the precision of the NIDS's detection by enabling it to incorporate different kinds of network context into its analysis.
R1,802
Or split into 4x interest-free payments of 25% on orders over R50
Learn more
18020
@R169pm x 12* 
Ships in 10 - 15 working days
Add to wish listReview this Item
Donate to Against Period Poverty
Product Description
Network intrusion detection systems (NIDS) continuously monitor network traffic for malicious activity, raising alerts when detecting attacks. However, high-performance Gbps networks pose major challenges for these systems, and despite vendor promises they often fail to work reliably in such environments. In this work, we set out to understand the trade-offs involved in network intrusion detection, and we mitigate their impact on operational security monitoring. We base our study on extensive experience with several large-scale network environments where immense traffic diversity requires any NIDS to deal robustly with unexpected situations. We devise new mechanisms for a popular open-source NIDS that allow the operator to trade-off the quality of the detection with the system's resource demands, and we enable the NIDS to transparently share its state across instances, thereby multiplying the available amount of resources. We also improve the precision of the NIDS's detection by enabling it to incorporate different kinds of network context into its analysis.
Customer Reviews
No reviews or ratings yet - be the first to create one!
Product Details
General
Imprint | VDM Verlag Dr. Mueller E.K. |
Country of origin | Germany |
Release date | August 2008 |
Availability | Expected to ship within 10 - 15 working days |
First published | August 2008 |
Authors | Robin Sommer |
Dimensions | 229 x 152 x 10mm (L x W x T) |
Format | Paperback - Trade |
Pages | 176 |
ISBN-13 | 978-3-639-05529-0 |
Barcode | 9783639055290 |
Categories | |
LSN | 3-639-05529-2 |
Similar Products | Recommended ProductsSee more 
Trending On Loot
Be the first to know about our
latest deals & promos! Subscribe Now
