International Journal of Computer Applications |
Foundation of Computer Science (FCS), NY, USA |
Volume 8 - Number 11 |
Year of Publication: 2010 |
Authors: Dr. S.G. Bhirud, Vijay Katkar |
10.5120/1248-1631 |
Dr. S.G. Bhirud, Vijay Katkar . Article:Novel Architecture for Intrusion-Tolerant Distributed Intrusion Detection System using Packet Filter Firewall and State Transition Tables. International Journal of Computer Applications. 8, 11 ( October 2010), 29-32. DOI=10.5120/1248-1631
Tremendous efforts have been taken over many years to secure the network against attacks; still attackers are successful with painful frequency. Experienced attackers try to disable the Intrusion Detection System (IDS) before launching attack. Therefore there should be some mechanism in IDS for uninterrupted detection of intrusion even though failure in IDS has occurred due to attacks. This paper presents the design and implementation of Novel Intrusion-Tolerant Distributed Intrusion Detection System using Packet Filter Firewall and State Transition Tables. Proposed architecture is immune to both, failure of IDS components and compromised IDS components. This architecture is capable of restricting the effect of network attacks like DoS, DDoS and Probing to a subset of network. Experimental results prove the usefulness and efficiency of this architecture.