cqu_3985+ATTACHMENT03+ATTACHMENT03.4.pdf (293.97 kB)
Download fileA Multi-core supported intrusion detection system
conference contribution
posted on 2017-12-06, 00:00 authored by Daxin TianDaxin Tian, Yang XiangYang XiangIntegrated multi-core processors with on-chip application acceleration have established themselves as the most efficient method of powering next-generation networking platforms. New research has been conducted for addressing the issues of multi-core supported network and system security. This paper put forward an asymmetrical multiprocessing architecture multi-core supported anomaly intrusion detection system. The key idea is to use an independent core to run the intrusion detection system to monitor the host system. The detection method is based on the Hebb rule and uses libpcap to grab the network transmission packages. In the experiments, we use VMware which is configured to run the Ubuntu to simulate the IDS core. The results show that when the intrusion threshold is 0.3-0.5 the system performs best.
Funding
Category 1 - Australian Competitive Grants (this includes ARC, NHMRC)
History
Parent Title
Proceedings : 2008 IFIP international conference on network and parallel computing, NPC 2008, 18-21 October 2008, Shanghai, ChinaStart Page
50End Page
55Number of Pages
6Start Date
2008-01-01ISBN-13
9780769533544Location
Shanghai, ChinaPublisher
IEEE Computer SocietyPlace of Publication
Los Alamitos, USAFull Text URL
Peer Reviewed
- Yes
Open Access
- No
External Author Affiliations
Faculty of Business and Informatics; Not affiliated to a Research Institute; Tianjin da xue;Era Eligible
- Yes
