Virtual Inline: A Technique of Combining IDS and IPS Together in Response Intrusion

Zheng Wu; Debao Xiao; Hui Xu; Xi Peng; Xin Zhuang

doi:10.1109/ETCS.2009.255

Education Technology and Computer Science, International Workshop on

Virtual Inline: A Technique of Combining IDS and IPS Together in Response Intrusion

Year: 2009, Volume: 1, Pages: 1118-1121

DOI Bookmark: 10.1109/ETCS.2009.255

Authors

Zheng Wu
Debao Xiao
Hui Xu
Xi Peng
Xin Zhuang

Abstract

The Intrusion Detection Systems (IDSs) play an important role in monitoring networks, but they lack abilities in automated intrusion response; the Intrusion Prevention Systems (IPSs) can guard networks in entrance, but they have no abilities in response inner-intranet attacks; many proposals focus on solutions in automated intrusion response, but they still have various problems existed, the main challenge is the accurate measurement of those related factors. This paper presents a virtual inline technique which is based on the technique of the Man in the Middle attack (MITM), it combines the NIDS and NIPS together in providing all-wave protection to networks. This technique integrates the advantages of both IDSs and IPSs, and avoids their shortages; it also avoids those problems baffle our researchers in this field. Empirical experiments show this technique is practicable.

Like what you’re reading?

Already a member?

Get this article FREE with a new membership!

Intrusion Detection Force: An Infrastructure for Internet-Scale Intrusion Detection
First IEEE International Workshop on Information Assurance (IWIA'03)
Collaborative Intrusion Prevention
16th IEEE International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises (WETICE 2007)
A Reliable and Scalable Classification-Based Hybrid IPS
2015 IEEE 29th International Conference on Advanced Information Networking and Applications Workshops (WAINA)
CONDOR: A Hybrid IDS to Offer Improved Intrusion Detection
2012 IEEE 11th International Conference on Trust, Security and Privacy in Computing and Communications
Group Feature Selection via Structural Sparse Logistic Regression for IDS
2016 IEEE 18th International Conference on High-Performance Computing and Communications, IEEE 14th International Conference on Smart City, and IEEE 2nd International Conference on Data Science and Systems (HPCC/SmartCity/DSS)
A Methodology for Testing Intrusion Detection Systems
IEEE Transactions on Software Engineering
Oblivious Intrusion Detection System
2022 IEEE International Symposium on Hardware Oriented Security and Trust (HOST)
RuleChain: A Novel Intrusion Rules Distribution Method Based on Blockchain
2019 International Conference on Computational Science and Computational Intelligence (CSCI)
KC-IDS : Multi-layer Intrusion Detection System
2020 International Conference on High Performance Big Data and Intelligent Systems (HPBD&IS)
NEP-IDS: a Network Intrusion Detection System Based on Entropy Prediction Error
2024 IEEE 49th Conference on Local Computer Networks (LCN)

Virtual Inline: A Technique of Combining IDS and IPS Together in Response Intrusion

Authors

Abstract

Related Articles