|
| << vorige | volgende >> |
Tijdschrift beschrijving
Alle jaargangen van het bijbehorende tijdschrift
Alle afleveringen van het bijbehorende jaargang
Alle artikelen van de bijbehorende aflevering
Details van artikel 2 van 20 gevonden artikelen
| Titel: |
ADRISYA: A Flow Based Anomaly Detection System for Slow and Fast Scan |
| Auteur: |
Muraleedharan N Arun Parmar |
| Verschenen in: |
International journal of network security & its applications |
| Paginering: | Jaargang 2 (2010) nr. 4 pagina's 234-245 |
| Jaar: |
2010 |
| Inhoud: |
Attackers perform port scan to find reachability, liveness and running services in a system or network.Current day scanning tools provide different scanning options and capable of evading various securitytools like firewall, IDS and IPS. So in order to detect and prevent attacks in the early stages, an accuratedetection of scanning activity in real time is very much essential. In this paper we present a flow basedprotocol behaviour analysis system to detect TCP based slow and fast scan. This system providesscalable, accurate and generic solution to TCP based scanning by means of automatic behaviour analysisof the network traffic. Detection capability of proposed system is compared with SNORT and resultproves the high detection rate of the system over SNORT. |
| Uitgever: |
Academy & Industry Research Collaboration Center (AIRCC) (provided by DOAJ) |
| Bronbestand: |
Elektronische Wetenschappelijke Tijdschriften |
Details van artikel 2 van 20 gevonden artikelen
| << vorige | volgende >> |