Snort, BRO, NetSTAT, Emerald and SAX2 : A Comparison

Article Sidebar

PDF
Published: Jan 13, 2017
DOI: https://doi.org/10.26483/ijarcs.v3i2.1037

Main Article Content

Suchita Patil
Pallavi S.Kulkarni,Pradnya B. Rane, Dr.B.B.Meshram

Abstract

Intrusion detection is an important component in network security. Many current Intrusion Detection Systems are designed on rule-based, which have a limitation of identifying the unknown attacks. Some IDS are designed on anomaly based detection technique which have advantage of identifying known and unknown attacks. It has a disadvantage of learning and training the data set to identify the good and bad data. Some IDS are designed on both signature based and anomaly based detection techniques. That are also referred to as hybrid IDS systems. There are many IDS available in which some IDS are open source IDS and some IDS are commercial products used in enterprise network. This paper gives the detailed comparative study of open source software SNORT, BRO, Net STAT also covers the commercial products like NFR, Emerald which is used as research tool and SAX2.

Keywords: signature based system, anomaly detection system, Intrusion Detection system

Downloads

Download data is not yet available.

Article Details

Issue
Vol. 3 No. 2 (2012): March April 2012
Section
Articles

COPYRIGHT

Submission of a manuscript implies: that the work described has not been published before, that it is not under consideration for publication elsewhere; that if and when the manuscript is accepted for publication, the authors agree to automatic transfer of the copyright to the publisher.

Authors who publish with this journal agree to the following terms:

  • Authors retain copyright and grant the journal right of first publication with the work simultaneously licensed under a Creative Commons Attribution License that allows others to share the work with an acknowledgment of the work's authorship and initial publication in this journal.
  • Authors are able to enter into separate, additional contractual arrangements for the non-exclusive distribution of the journal's published version of the work (e.g., post it to an institutional repository or publish it in a book), with an acknowledgment of its initial publication in this journal.
  • Authors are permitted and encouraged to post their work online (e.g., in institutional repositories or on their website) prior to and during the submission process, as it can lead to productive exchanges, as well as earlier and greater citation of published work
  • The journal allows the author(s) to retain publishing rights without restrictions.
  • The journal allows the author(s) to hold the copyright without restrictions.