| Publisher | Association of Information Technology Professionals (AITP) | ||
|---|---|---|---|
| Format | 1.8MB PDF | Date added | 06 Nov 2006 |
| Topics | Intrusion Detection Systems, Virtualization | ||
| Downloads | 35 | ||
This paper describes how to design and implement an intrusion detection module that may be implemented in various courses taught in an information system curriculum and covers the industry-standard Snort Open Source Intrusion Detection System (IDS). This paper proposes that virtualization offers three significant instructional advantages in delivering a rich IDS experience; server independence giving each student control of an IDS configuration; a unique IP address on the "Virtual" network for each server so that students are able to work in teams, including in distance learning situations, and; demonstration of centralized logging as typically deployed in production networks by configuring each virtual machine to send log messages to the instructor's virtual machine.
Did you find this white paper useful?
23 out of 50 users found this white paper useful
Related white papers
Messagelabs - IT Security Threats of Today and Tommorrow Webcast Supporting Doc
This document supports th silicon.com webcast which discusses some of the security threats to IT systems that organisations have to face on a daily basis - and what do about...
MessageLabs Intelligence : 2009 security Predictions
Having analyzed the global threat landscape for almost a decade, MessageLabs Team Skeptic™ is comprised of many world-renowned malware and spam experts who have a global view of threats across...
Intrusion Detection Using Rough Set Parallel Genetic Programming Based Hybrid Model
Recently machine learning-based Intrusion Detection systems (IDs) have been subjected to extensive researches because they can detect both misuse and anomaly. Most of existing IDs use all features in the...
Intrusion Detection Techniques for Mobile Wireless Networks
The rapid proliferation of wireless networks and mobile computing applications has changed the landscape of network security. The traditional way of protecting networks with firewalls and encryption software is no...
Performance of the Network Intrusion Detection Systems
Security is an important factor of the Network Protection. Zero-day attacks, new (anamolous) attacks exploiting previously unknown system vulnerabilities, have become potentially serious threats to the very existence of the...
Computer Security Manufacturer Deploys Worldwide Intrusion Prevention to Stop Attackers in Their Tracks
The client is a global computer security powerhouse. The challenge was to detect and prevent network attacks on global network, including known, unknown, and DoS attacks, as well as attacks...
Category-Based Selection of Effective Parameters for Intrusion Detection
Existing intrusion detection techniques emphasize on building intrusion detection model based on all features provided. In feature-based intrusion detection, some selected features may found to be redundant and useless. Feature...
