cqu_3985+ATTACHMENT03+ATTACHMENT03.4.pdf (293.97 kB)
Download file

A Multi-core supported intrusion detection system

Download (293.97 kB)
conference contribution
posted on 06.12.2017, 00:00 authored by Daxin TianDaxin Tian, Yang XiangYang Xiang
Integrated multi-core processors with on-chip application acceleration have established themselves as the most efficient method of powering next-generation networking platforms. New research has been conducted for addressing the issues of multi-core supported network and system security. This paper put forward an asymmetrical multiprocessing architecture multi-core supported anomaly intrusion detection system. The key idea is to use an independent core to run the intrusion detection system to monitor the host system. The detection method is based on the Hebb rule and uses libpcap to grab the network transmission packages. In the experiments, we use VMware which is configured to run the Ubuntu to simulate the IDS core. The results show that when the intrusion threshold is 0.3-0.5 the system performs best.

Funding

Category 1 - Australian Competitive Grants (this includes ARC, NHMRC)

History

Parent Title

Proceedings : 2008 IFIP international conference on network and parallel computing, NPC 2008, 18-21 October 2008, Shanghai, China

Start Page

50

End Page

55

Number of Pages

6

Start Date

01/01/2008

ISBN-13

9780769533544

Location

Shanghai, China

Publisher

IEEE Computer Society

Place of Publication

Los Alamitos, USA

Peer Reviewed

Yes

Open Access

No

External Author Affiliations

Faculty of Business and Informatics; Not affiliated to a Research Institute; Tianjin da xue;

Era Eligible

Yes

Name of Conference

IFIP International Conference on Network and Parallel Computing.