By Topic

Enhanced automated intrusion prevention in network security

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Formats Non-Member Member
$31 $13
Learn how you can qualify for the best price for this item!
Become an IEEE Member or Subscribe to
IEEE Xplore for exclusive pricing!
close button

puzzle piece

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

2 Author(s)
Xiao Dong He ; Dept. of Data Commun. & Eng., Guangzhou Civil Aviation Coll., Guangzhou, China ; Teck Chaw Ling

An automated Intrusion Prevention Mechanism (AIPM) which comprises the functionalities of IDS, IPS, and auto configuring network devices is proposed to enhance network security. AIPM is a mechanism that includes automated intrusion prevention function and automated analysis of intrusion messages function. In addition, the ability of automatically detecting and analyzing network traffic allows AIPM to detect malicious attacks in almost real time. Likewise, the ability of automatically analyzing intrusion messages and network configuration enable AIPM to build a topological view and locate the source of a malicious attack. Results from the case studies show that AIPM imposes lower overhead than conventional method, which queries all pre-defined routers to block every interface irrespective of where the attack is launched. In summary, AIPM which incorporates the functionalities of IDS/IPS offers network protection against potential malicious acts without incurring additional overheads as compare to the conventional method.

Published in:

Computer Engineering and Technology (ICCET), 2010 2nd International Conference on  (Volume:2 )

Date of Conference:

16-18 April 2010