Policy of packet dropping for enhancing IDS performance

Jong Wook Moon; Jong Su Kim; Gi Hyun Jung; Kang Bin Yim; Min Kyu Joo; Kyung Hee Choi

Policy of packet dropping for enhancing IDS performance

The KIPS Transactions:PartC, Vol. 9, No. 4, pp. 473-480, Aug. 2002

10.3745/KIPSTC.2002.9.4.473, PDF Download:

Abstract

Although many researches on IDS (Intrusion Detection System) have been performed, the most of them are limited to the algorithm of detection software. However, even an IDS with superior algorithm can not detect intrusion, if it loses packets which may have a clue of intrusions. In this paper, we suggest an efficient way to improve the performance of IDS by reducing packet losses occurred due to hardware limitation and abundant processing overhead introduced by massive detection software itself. The reduction in packet losses is achieved by dropping hacking-free packets. The result shows that this decrease of packet losses leads an IDS to improve the detection rate of real attack.

Statistics

Show / Hide Statistics

Statistics (Cumulative Counts from September 1st, 2017)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.

Cite this article

[IEEE Style]

J. W. Moon, J. S. Kim, G. H. Jung, K. B. Yim, M. K. Joo, K. H. Choi, "Policy of packet dropping for enhancing IDS performance," The KIPS Transactions:PartC, vol. 9, no. 4, pp. 473-480, 2002. DOI: 10.3745/KIPSTC.2002.9.4.473.

[ACM Style]

Jong Wook Moon, Jong Su Kim, Gi Hyun Jung, Kang Bin Yim, Min Kyu Joo, and Kyung Hee Choi. 2002. Policy of packet dropping for enhancing IDS performance. The KIPS Transactions:PartC, 9, 4, (2002), 473-480. DOI: 10.3745/KIPSTC.2002.9.4.473.