Spartan: Stateful network intrusion prevention system
Date of Publication
2010
Document Type
Bachelor's Thesis
Degree Name
Bachelor of Science in Computer Science
College
College of Computer Studies
Department/Unit
Computer Science
Defense Panel Member
Gregory G. Cu
Abstract/Summary
Security tools that exist today are anti-virus, anti-spyware and firewall systems. However, given these tools, security breaches still happen. Improvements are made through the development of Network Intrusion Prevention Systems (NIPS). NIPS provides a new way of detection through logging traffic and analyzing its content. Based on the generated result, it tries to block and prevent attacks that are detected from happening again. NIPS is categorized into two types based on its detection method, either Signature-based or Behavioral-based. This study focuses on Behavioral-based NIPS that identifies malicious threats and activities by applying statistical measures and artificial intelligence to compare the current network flow against the historical knowledge of network utilization. This study focuses on the development of NIPS that uses algorithms that makes rule analysis efficient and can do stateful packet inspection. To quantify the efficiency, the system is tested by deploying it with and without rule summarization and determines whether it reduced network latency. Stateful Packet Inspection test were done to detect packers in the same session. Specifically, the system is able to observe and record network behavior. It also analyzes the packets base on its normal rates. The system prevents attacks with comparison to the normal network baseline and decides whether to allow or to drop it.
Abstract Format
html
Language
English
Format
Accession Number
TU15564
Shelf Location
Archives, The Learning Commons, 12F, Henry Sy Sr. Hall
Physical Description
1 v. (various foliations) : ill. (some col.) ; 28 cm.
Keywords
Computer security; Computer networks--Security measures
Recommended Citation
Abcede, J. S., Bautista, G. Z., Concepcion, R. A., & Marcos, M. S. (2010). Spartan: Stateful network intrusion prevention system. Retrieved from https://animorepository.dlsu.edu.ph/etd_bachelors/14655