TIIS (Çѱ¹ÀÎÅͳÝÁ¤º¸ÇÐȸ)
Current Result Document :
| ÇѱÛÁ¦¸ñ(Korean Title) |
Intrusion Detection System for Home Windows based Computers |
| ¿µ¹®Á¦¸ñ(English Title) |
Intrusion Detection System for Home Windows based Computers |
| ÀúÀÚ(Author) |
Matej Zuzčák
Tomáš Sochor
Milan Zenka
|
| ¿ø¹®¼ö·Ïó(Citation) |
VOL 13 NO. 09 PP. 4706 ~ 4726 (2019. 09) |
Çѱ۳»¿ë
(Korean Abstract) |
|
¿µ¹®³»¿ë
(English Abstract) |
The paper is devoted to the detailed description of the distributed system for gathering data from Windows-based workstations and servers. The research presented in the beginning demonstrates that neither a solution for gathering data on attacks against Windows based PCs is available at present nor other security tools and supplementary programs can be combined in order to achieve the required attack data gathering from Windows computers. The design of the newly proposed system named Colander is presented, too. It is based on a client-server architecture while taking much inspiration from previous attempts for designing systems with similar purpose, as well as from IDS systems like Snort. Colander emphasizes its ease of use and minimum demand for system resources. Although the resource usage is usually low, it still requires further optimization, as is noted in the performance testing. Colander¡¯s ability to detect threats has been tested by real malware, and it has undergone a pilot field application. Future prospects and development are also proposed.
|
| Å°¿öµå(Keyword) |
Network intrusion detection system
IDS
packet
threat
threat analysis
signature
|
| ÆÄÀÏ÷ºÎ |
PDF ´Ù¿î·Îµå
|
