Java based Network Intrusion Detection Systems using Object Oriented Methodology

Conference: Recent Trends in Information Processing, Computing, Electrical and Electronics
Author(s): Nareshkumar D. Harale, B. B. Meshram Year: 2017
Grenze ID: 02.IPCEE.2017.1.508_1 Page: 476-485

Abstract

Malicious attacks are getting smarter, more widespread and increasingly difficult to detect, and dozens more are\nadded to the menagerie each day. Identifying and classifying the type of malicious program spreading across global networks\nis a crucial step in developing strategies to contain and eradicate it. A firewall and other preventive security controls are an\nessential and important part of network security but they don’t have the ability to detect hostile intent. Unlike a firewall, an\nintrusion detection system has the ability to weigh introverted packets and generate an alarm if it detects a packet with hostile\npotential. This research paper has proposed a novel idea for design and development of Network IDS using object oriented\ntechniques, JPCapDump Packet capturing library and JAVA Language. Unlike Snort Network IDS software; this system is\ndeveloped using Java language and tested in the typical enterprise environment to detect known attacks and protocol\nanomalies, it also run multiple OS platform. Through the use of open source tools and replacement hardware a Network IDS\ncan be setup and tested with minimal financial burden. Packet Preprocessing, Packet Analyzer, Intrusion Detection and Alert\nGenerations are the key components of the proposed system. This paper describes the most common attacks used these days\nto paralyze computer and network resources. It provides network traces of malicious traffic and strategies for providing better\ncountermeasures. Data sets captured at the enterprise network of Calgary are analyzed to classify intrusion attempts and\nidentify security holes in the network using developed Network IDSs.

<< BACK

IPCEE - 2017