An Architecture for Efficient Intrusion Detection System of Abnormal Traffic

비정상 트래픽 상황에서 효율적 침입 탐지 시스템(EIDS) 구조 연구

  • Kwon, Young-Jae (Division of Electrical and Computer Engineering Hanyang University) ;
  • Lee, Du-Man (Division of Electrical and Computer Engineering Hanyang University) ;
  • Yim, Hong-Bin (Division of Electrical and Computer Engineering Hanyang University) ;
  • Jung, Jae-Il (Division of Electrical and Computer Engineering Hanyang University)
  • 권영재 (한양대학교 전자통신컴퓨터공학과) ;
  • 이두만 (한양대학교 전자통신컴퓨터공학과) ;
  • 임홍빈 (한양대학교 전자통신컴퓨터공학과) ;
  • 정재일 (한양대학교 전자통신컴퓨터공학과)
  • Published : 2006.06.21

Abstract

Intrusion detection technology is highlighted in order to establish a safe information-oriented environment. Intrusion detection system can be categorized into anomaly detection and misuse detection according to intrusion detection pattern. In this paper, we propose an architecture to make up for the defect of conventional anomaly intrusion detection. This architecture reduces additional resource consumption and cost by placing the agent in the strategic location in Internet.

Keywords