文章基本信息

标题：Modeling and Performance Analysis of the Response Capacity for Alert Information in an Intrusion Detection System
本地全文：下载
作者：Yong-Hee Jeon ; Jung-Sook Jang, Jong-Soo,Jang
期刊名称：International Journal of Computer Science and Network Security
印刷版ISSN：1738-7906
出版年度：2007
卷号：7
期号：12
页码：8-17
出版社：International Journal of Computer Science and Network Security
摘要：In this paper, we propose an intrusion detection system(IDS) architecture which can detect and respond against the generation of abnormal traffic such as malicious code and Internet worms. We model the system, design and implement a simulator using OPNET Modeller, for the performance analysis on the response capacity of alert information in the proposed system. At first, we model the arrival process of alert information resulted from abnormal traffic. In order to model the situation in which alert information is intensively produced, we apply the IBP(Interrupted Bernoulli Process) which may represent well the burstiness of traffic. Then we perform the simulation in order to gain some quantitative understanding of the system for our performance parameters. Based on the results of the performance analysis, we analyze factors which may hinder in accelerating the speed of security node, and would like to present some methods to enhance performance.
关键词：IDS, Performance Evaluation, Simulation, alert information