traffic intrusion
RSS traffic intrusionNetwork Intrusion Detection: Evasion, Traffic Normalization, and End-to-End Protocol Semantics
White Paper A fundamental problem for network intrusion detection systems is the ability of a skilled attacker to evade detection by exploiting ambiguities in the traffic stream as seen by the monitor. We discuss the viability of addressing this problem by... [24 Feb 2004]
Network Intrusion Detection: Evasion, Traffic Normalization, and End-to-End Protocol Semantics
White Paper A fundamental problem for network intrusion detection systems is the ability of a skilled attacker to evade detection by exploiting ambiguities in the traffic stream as seen by the monitor. This paper discusses the viability of addressing this... [21 May 2008]
Traffic Analysis: From Stateful Firewall to Network Intrusion Detection System
White Paper This paper investigates traffic analysis techniques need in stateful firewall and Network Intrusion Detection System (NIDS). This calls for the necessity of analyzing the traffic (packets) on the network. [24 Apr 2008]
A Parallel Architecture for Stateful Intrusion Detection in High Traffic Networks
White Paper These issues are critical especially for Network Intrusion Detection Systems (NIDS) that need to trace and reassemble every connection, and to examine every packet flowing on the monitored link(s), to guarantee high security levels. [21 May 2008]
Using sFlow and InMon Traffic Server for Intrusion Detection and Other Security Applications
White Paper With organizations becoming more and more dependent on network infrastructure for business critical applications, unauthorized access to networks can have a significant impact on the ability of a business to function. [10 Jul 2008]
An Intrusion Detection System for Security Protocol Traffic
White Paper The Internet has emerged as a medium for wide-scale electronic communication involving financial transactions and other sensitive information. Encrypted exchanges between principals are widely used to ensure data security. [30 Jun 2008]
Seres Avoids Traffic Disturbance From MyDoom Worm Thanks to Proventia Intrusion Prevention Appliances
White Paper Initially, SERES was using Internet Security Systems (ISS)' RealSecure Network on Nokia IP330, which was mainly serving as an intrusion detection agent. However, the passive nature of intrusion detection technology was not enough for SERES, who... [18 Dec 2004]
Cisco Security Advisory: Cisco Secure Intrusion Detection System Signature Obfuscation Vulnerability
White Paper Intrusion Detection Systems inspect network traffic for suspect or malicious packet formats, data payloads and traffic patterns. Intrusion detection systems typically implement obfuscation defense - ensuring that suspect packets cannot easily be... [10 Apr 2008]
Generic Intrusion Detection Evaluation Guide
White Paper Network-based intrusion detection software monitors and evaluates network traffic for two types of problems - 1) Attacks, either from outside or inside the network, and 2) network misuse as it is defined by your organization’s security policy. [24 Feb 2004]
SIFT: Snort Intrusion Filter for TCP
White Paper High-level intrusion rules mapped directly into hardware separate malicious content from benign content in network traffic. In this paper, a Snort Intrusion Filter for TCP (SIFT) is presented that operates as a preprocessor to prevent benign... [30 Oct 2007]
A Distributed Intrusion Detection Prototype Using Security Agents
White Paper The design and implementation of the Distributed Intrusion Detection prototype relies on Security Agents which monitor network traffic and report intrusion alerts to a central management node. Intrusion Detection is the problem of identifying... [01 Jul 2008]
Design and Implementation of a High-Performance Network Intrusion Prevention System
White Paper Network intrusion prevention systems provide proactive defense against security threats by detecting and blocking attack-related traffic. The network processor acts as a customized load balancing splitter that cooperates with a set of modified... [08 Jan 2008]
UnityOne Intrusion Prevention Appliances: Performance Evaluation
White Paper When considering the purchase of network-based intrusion prevention systems, network architects and managers need to validate both the performance characteristics and security precision of available products under real-world traffic conditions. [04 Aug 2005]
TippingPoint Intrusion Prevention Systems Data Sheet
White Paper Intrusion Detection Systems, by definition, only detect and do not block unwanted traffic. TippingPoint's high performance and extraordinary intrusion prevention accuracy have redefined network security, and fundamentally changed the way people... [26 Jul 2007]
Detecting Abnormal Network Activities With Netflow
White Paper Some organizations also use Intrusion Detection Systems (IDS) on border routers to analyze incoming traffic for patterns that indicate specific problems. Although firewall logs often provide a huge information regarding intrusion attempts... [05 Oct 2006]
