You are here: silicon.com > Resources > White Papers > Security > Intrusion - Tampering > Network Security

Network Security White Papers

Enhancing Network Intrusion Detection With Integrated Sampling and Filtering

Tags:
network security

Overview The structure of many standalone Network Intrusion Detection Systems (NIDSs) centers around a chain of analysis that begins with packets captured by a packet filter, where the filter describes the protocols (TCP/UDP port numbers) and sometimes hosts or subnets to include or exclude from the analysis. This paper argues for augmenting such analysis with an additional, separately filtered stream of packets. This "Secondary Path" supplements the "Main Path" by integrating sampling and richer forms of filtering into a NIDS's analysis. It discusses an implementation of a secondary path for the Bro intrusion detection system and enhancements the authors developed to the Berkeley Packet Filter to work in concert with the secondary path.

Further White Paper Details
Publisher	University of California	File Format	PDF
Date Published	July 2006
Format	White Papers
Topics	Network Security, Security Tools, Intrusion Detection Systems

Did you find this white paper useful? 11 out of 23 users found this white paper useful

Balancing Security Against Productivity

What makes for great security? Is it about keeping the bad guys out or letting the good guys in? About defending attacks or preventing them? When IDG Research Services queried...

Publisher:
Novell

Security: New strides in preventing intrusions.

Need help eliminating risk in your IT environment? This ForwardView webshow describes how security appliances, which incorporate an array of security functions, can help you ward off security breaches without...

Publisher:
IBM

MessageLabs Intelligence : 2009 security Predictions

Having analyzed the global threat landscape for almost a decade, MessageLabs Team Skeptic™ is comprised of many world-renowned malware and spam experts who have a global view of threats across...

Publisher:
MessageLabs, now part of Symantec

IDC Vendor Spotlight

Organised ubiquity is a must for organisations to sucessfully "project" their users in any given landspace, at any given time, with secuirty policy. This White Paper covers issues surrounding secure...

Publisher:
BeCrypt

Trend Micro Enterprise Security white paper

This white paper reviews the content security threat landscape and how it has evolved into a more dangerous and high risk environment. The paper discussed how conventional content security approaches...

Publisher:
Trend Micro

Symantec refocuses, Clickmango exits and firms seek talent

New security solutions will include content filtering, intrusion detection, vulnerability assessment and firewall features, in addition to the continued strength of the Antivirus solution. It is also aiming to develop its existing delivery service...

Channel:
Comment & Analysis

Top ten tips to stop internal hackers

Implement architectural features to isolate, minimise and monitor internal user access abuses such as using packet sniffers to monitor internal traffic and host and/or a network-based intrusion detection system to identify internally-based attacks.

Channel:
Security Strategy

Analysis: The network is the security

Network devices will have the ability to tear apart packets, block malicious code, enforce policies and filter content up and down the OSI (Open Systems Interconnection) stack. This means that the network will perform the same functions that...

VoIP: Don't forget about security

I'm waiting to see the security tool which is a network packet sniffer that reassembles packets on the fly," Murray says. Before the overhaul, the company's network was badly hit by the Blaster worm, which flooded routers with junk packets.

Channel:
VoIP
Tags:
voip

Cracked: The Great Firewall of China

If an attacker generated 100 triggering packets per second, and each packet caused 20 minutes of disruption, 120,000 pairs of endpoints could be prevented from communicating at any one time. The Cambridge research group tested the firewall by...

Cisco wireless LAN: At risk from 'skyjack' attack

Someone out in the parking lot or a neighbour can look at the packets and see information about the controller on the wired side," he said. Researchers at AirMagnet, which makes intrusion-detection systems for WLANs, discovered the vulnerability...

Channel:
LANs
Tags:
network,
cisco

Featured White Papers

The Value of Location Intelligence in the Communications Industry

Public Services are under pressure, the challenge is to do more with less. How do you improve citizen satisfaction, increase cost efficiencies and improve service delivery? The power of location intelligence is helping many local authorities and government departments make more informed decisions and derive greater value from current location-based information and data. Read this whitepaper to see how you can take advantage of location intelligence.

Publisher:
Pitney Bowes

Best Practices for Translating Customer Satisfaction into Revenue

Today's support organisations are focused on two top-level metrics: financial results and customer satisfaction. For most, it's easy to track financial performance, but customer satisfaction is akin to speaking a foreign language. How do you quantify customer satisfaction? Download the Best Practices for Benchmarking Customer Satisfaction to get industry research the Association of Support Professionals (ASP) on how to measure and leverage customer satisfaction.

Publisher:
Citrix Online

HP print solutions and 3M

the objective for 3M was to optimize office printing infrastructure at 3Mlocations worldwide Reduce total cost and environmental footprint. Some of the business benefits acheived by switching to HP print soultions, More than $3 million in savings in first two years and Per page costs reduced by up to 90 percent.