Centralized security manager
Today's increasing demand of network connectivity exposes most users to security intrusive cyber crimes. To counteract such deeds, several security measures were created such as firewalls and various types of intrusion detection systems (IDS). There are two general types of intrusion detection...
Saved in:
Main Authors: | , , , |
---|---|
Format: | text |
Language: | English |
Published: |
Animo Repository
2004
|
Subjects: | |
Online Access: | https://animorepository.dlsu.edu.ph/etd_bachelors/14227 |
Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
Institution: | De La Salle University |
Language: | English |
Summary: | Today's increasing demand of network connectivity exposes most users to security intrusive cyber crimes. To counteract such deeds, several security measures were created such as firewalls and various types of intrusion detection systems (IDS). There are two general types of intrusion detection systems namely, network-based IDS, host-based IDS. Between these types lie combination systems, such as the Linux-Based Intrusion Detection System by Fu et al (2003) that use joint host-based detection and network-based detection independently.
This thesis aims to improve the Linux-Based IDS by using a sensor-manager architecture wherein a central security manager can coordinate all activities of the segment-based sensors, created from the IDS itself, of the system for a single workstation. Aside from this it has an event-sniping capability. This capability will allow the manager to remotely connect to a network firewall and selectively block off hostile IP addresses. The thesis will be implemented on a Linux-based network topology using IEEE 802.3 technology. |
---|