期刊名称:International Journal of Computer Science and Network Security
印刷版ISSN:1738-7906
出版年度:2006
卷号:6
期号:7B
页码:151-157
出版社:International Journal of Computer Science and Network Security
摘要:In this paper we present a general framework for an Intrusion Detection System which we call as the Layer Based Intrusion Detection System (LBIDS). We base our framework on the fact that any network needs to ensure the confidentiality, integrity and availability of data and/or services which can be compromised only sequentially one after the other, i.e. availability followed by authentication and authorization and finally leading to loss of confidentiality and integrity. Our framework examines different attributes at different layers to effectively identify any breach of security at every layer. This has the advantage that we can effectively divide the computation into smaller parts and if at any stage/layer the system makes a decision that there is an attack, it can simply block that intrusion and save the higher layers from performing any further computation, rather than making a decision by aggregating entire data at a single point as is commonly used in any well known Intrusion Detection System
