Research and Implementation of Next Generation Network Intrusion Detection System Based on Protocol Analysis
- Resource Type
- Conference
- Authors
- Yao, Guo-xiang; Guan, Quan-long; Lin, Liang-chao; Huang, Shu-Qiang; Zhu, Guo-cheng; Zhang, Hui-ping; Gao, Zhi
- Source
- 2008 ISECS International Colloquium on Computing, Communication, Control, and Management Computing, Communication, Control, and Management, 2008. CCCM '08. ISECS International Colloquium on. 2:353-357 Aug, 2008
- Subject
- Computing and Processing
Communication, Networking and Broadcast Technologies
Robotics and Control Systems
Engineering Profession
Protocols
Intrusion detection
Security
Payloads
Pattern matching
IP networks
Libraries
IPv6
protocol analysis
system vulnerability
pattern match
- Language
- ISSN
- 2154-9613
2154-963X
An intrusion detection system which can work in IPv6 network environment is designed and implemented based on protocol analysis and pattern match technology in this paper. The system not only can fast detect system vulnerabilities and network intrusion events, but also possesses high accuracy and good performance. Furthermore, the system is tested using IDSwakeup. The test shows that the system can detect 90% of the attacking packets and lost hardly any packet when enormous and different types of vicious data packets generated by data packet generator are sent. So the system is efficient and quick-reacting IDS working in IPv6 environment.