traffic intrusion packets
Sort by: Relevance | Date
A Load Balancing Algorithm for High Speed Intrusion Detection
White Paper Based on the contents of fields in IP packet header and some simple operations, this algorithm can keep the relativities among packets in a high bandwidth network environment while distributing workload to different processing node. [10 Jul 2008]
An Intrusion Detection System With Active Response Generation
White Paper The solution is capable of searching for intrusion signatures inside the packets that come from multiple network interfaces simultaneously and capable of analyzing and filtering packets on any or all directions of traffic. [02 Jul 2008]
New Trend of Intrusion Detection System for High-Speed Networks
White Paper To guarantee a precise detection the NIDS must detect packets at a wire speed. Network Intrusion Detection System (NIDS) is an important and practical tool for network security. In such a design, the incoming network traffic is disseminated to a... [02 Jul 2008]
White Paper: Deploying Network Taps With Intrusion Detection Systems
White Paper Because of the legitimate worry of false positives causing an intrusion prevention system to block valid network traffic, passive mode is still the most common mode of deployment - but security administrators and IDS vendors have been working on... [30 Jun 2008]
A Network Intrusion Detection System on IXP1200 Network Processors With Support for Large Rule Sets
White Paper It is aimed at detecting worms at high speeds by matching the payload of network packets against worm signatures at the lowest possible levels of the processing hierarchy (the microengines of an IXP1200 network processor). [30 Jun 2008]
Recent Advances in Network Intrusion Detection System Tuning
White Paper The framework integrates both benign and malicious traffic, enabling generation of IP packet streams with diverse characteristics from the perspective of packet content (both header and payload), packet mix (order of packets in streams) and packet... [31 May 2008]
Detecting Critical Nodes for MANET Intrusion Detection Systems
White Paper The common design goal of reactive, proactive, and hybrid ad hoc routing protocols is to faithfully route packets from a source node to a destination node while maintaining a satisfactory level of service in a resource-constrained environment. [31 May 2008]
A Parallel Architecture for Stateful Intrusion Detection in High Traffic Networks
White Paper In a scenario where network bandwidth and traffic are continuously growing, network appliances that have to monitor and analyze all flowing packets are reaching their limits. These issues are critical especially for Network Intrusion Detection... [21 May 2008]
Traffic Analysis: From Stateful Firewall to Network Intrusion Detection System
White Paper This calls for the necessity of analyzing the traffic (packets) on the network. Stateful firewall analyzes packets up to their layer 4 headers while NIDS analyzes the whole packet. This paper investigates traffic analysis techniques need in... [24 Apr 2008]
SPACEDIVE: A Distributed Intrusion Detection System for Voice-over-IP Environments
White Paper The Snort IDS is well known for its efficiency in examining incoming packets and SPACEDIVE leverages the Snort functionality. Voices over IP (VoIP) systems are gaining in popularity as the technology for transmitting voice traffic over IP networks. [11 Apr 2008]
Cisco Security Advisory: Cisco Secure Intrusion Detection System Signature Obfuscation Vulnerability
White Paper Intrusion detection systems typically implement obfuscation defense - ensuring that suspect packets cannot easily be disguised with UTF and/or hex encoding and bypass the Intrusion Detection systems. Intrusion Detection Systems inspect network... [10 Apr 2008]
Improving the Performance of Passive Network Monitoring Applications Using Locality Buffering
White Paper The approach, called locality buffering, reorders the captured packets by clustering packets with the same destination port, before they are delivered to the monitoring application, resulting to improved code and data locality, and consequently to... [03 Mar 2008]
On the Design and Use of Internet Sinks for Network Abuse Monitoring
White Paper In contrast to traditional intrusion detection systems or firewalls, iSink includes an active component that generates response packets to incoming traffic. Monitoring unused or dark IP addresses offers opportunities to significantly improve and... [08 Jan 2008]
Target-Based TCP Stream Reassembly
White Paper This flaw exists in several layers of evaluation and processing of the packets including the IP, TCP, and application layers. The authors revealed that intrusion detection systems cannot be effective and accurate because they do not necessarily... [26 Dec 2007]
Passive Operating System Identification From TCP/IP Packet Headers
White Paper The most recent open-source passive OS identification tool (ettercap) rejects 70% of all packets and has a high 75-class error rate of 30% for non-rejected packets on unseen test data. Nearest neighbor and binary tree classifiers provide a low 9... [06 Nov 2007]
Keep updated for stories matching traffic intrusion packets via RSS
