Intrusion detection system: A comprehensive review

Journal of Network and Computer Applications

Volumn 36, Issue 1, 2013, Pages 16-24

  Liao, Hung Jen ^a   Richard Lin, Chun Hung ^a   Lin, Ying Chih ^a,b   Tung, Kuang Yuan ^a  

^a NATIONAL SUN YAT SEN UNIVERSITY   (Taiwan)

^b CHENG SHIU UNIVERSITY   (Taiwan)

Author keywords

Anomaly; Intrusion detection; Misuse

Indexed keywords

ANOMALY; COMPUTATIONAL POWER; INTRUSION DETECTION SYSTEMS; MISUSE; NETWORK THROUGHPUT; SECURITY THREATS;

COMPUTER CRIME;

INTRUSION DETECTION;

EID: 84870713037     PISSN: 10848045     EISSN: 10958592     Source Type: Journal    
DOI: 10.1016/j.jnca.2012.09.004     Document Type: Review

References (75)

1. AV Aho, and MJ Corasick Efficient string matching: an aid to bibliographic search Communications of the ACM 18 1975 333 340
2. O Alomari, and ZA Othman Bees algorithm for feature selection in network anomaly detection Journal of Applied Sciences Research 8 2012 1748 1756
3. SH Amer, and JA Hamilton Intrusion detection systems (IDS) taxonomy - a short review Journal of Software Technology 13 2010
4. T Anantvalee, and J Wu A survey on intrusion detection in mobile ad hoc networks Y Xiao, X Shen, D-Z Du, Wireless/mobile network security 2007 Springer-Verlag 170 196
5. Axelsson S, Intrusion detection systems: a survey and taxonomy, Chalmers University of Technology, Sweden, Technical Report 99-15 (2000), pp. 1-27.
6. R Bace, P Mell, Intrusion detection systems, National Institute of Standards and Technology (NIST), Technical Report 800-31, 2001.
7. RS Boyer, and JS Moore A fast string searching algorithm Communications of the ACM 20 1977 762 772
8. CERT, 〈http://www.cert.org/stats〉
9. Cabrera JBD, Gosar J, Lee W, Mehra RK, On the statistical distribution of processing times in network intrusion detection. In: 43rd IEEE conference on decision and control, Paradise Island, Bahamas, 2004, pp. 75-80.
10. M Carbone, W Lee, and D Zamboni Taming virtualization IEEE Security and Privacy 6 2008 65 67
11. YY Chung, and N Wahid A hybrid network intrusion detection system using simplified swarm optimization (SSO) Applied Soft Computing 12 2012 3014 3022
12. ClamAV, 〈http://www.clamav.net〉
13. M Couture Real time intrusion prediction based on optimized alerts with hidden Markov model Journal of Networks 7 2012 311 321
14. H Debar, M Dacier, and A Wespi Towards a taxonomy of intrusion detection systems Computer Networks 31 1999 805 822
15. H Debar, M Dacier, and A Wespi A revised taxonomy for intrusion-detection system Annals of Telecommunications 55 2000 361 378
16. N Delgado, Q Gates, and S Roach A taxonomy and catalog of runtime software-fault monitoring tools IEEE Transactions on Software Engineering 30 2004 859 872
17. DE Denning An intrusion-detection model IEEE Transactions on Software Engineering SE-13 1987 222 232
18. HT Elshousha, and IM Osmanb Alert correlation in collaborative intelligent intrusion detection systems - a survey Applied Soft Computing 11 2011 4349 4365
19. Embotics, Controlling VM sprawl: best practices for gaining and maintaining control of virtualized infrastructures, White Paper, 2010.
20. JM Estevez-Tapiador, P Garcia-Teodoro, and JE Diaz-Verdejo Anomaly detection methods in wired networks: a survey and taxonomy Computer Communications 27 2004 1569 1584
21. AH Farooqi, FA Khan, J Wang, S Lee, A novel intrusion detection framework for wireless sensor networks, Personal and Ubiquitous Computing. Available Online 2012.
22. AG Fragkiadakis, EZ Tragos, T Tryfonas, and IG Askoxylakis Design and performance evaluation of a lightweight wireless early warning intrusion detection prototype EURASIP Journal on Wireless Communications and Networking 73 2012 1 18
23. P Garcia-Teodoro, J Diaz-Verdejo, G Macia-Fernandez, and E Vazquez Anomaly-based network intrusion detection: techniques, systems and challenges Computers & Security 28 2009 18 28
24. Garfinkel T, Rosenblum M, A virtual machine introspection based architecture for intrusion detection. In: Network and distributed systems security symposium, San Diego, California, USA, 2003
25. Goyal N, Ormont J, Smith R, Sankaralingam K, Estan C, Signature matching in network processing using SIMD/GPU architectures, University of Wisconsin-Madison, Technical Report 1628, 2008.
26. C-Y Ho, Y-C Lai, I-W Chen, F-Y Wang, and W-H Tai Statistical analysis of false positives and false negatives from real traffic with intrusion detection/prevention systems IEEE Communications Magazine 50 2012 146 154
27. SJ Horng, MY Su, YH Chen, TW Kao, RJ Chen, JL Lai, and CD Perkasa A novel intrusion detection system based on hierarchical clustering and support vector machines Expert Systems with Applications 38 2011 306 313
28. W Jiang, Y-HE Yang, VK Prasanna, Scalable multi-pipeline architecture for high performance multi-pattern string matching. In: 24th IEEE international parallel and distributed processing symposium, Atlanta, Georgia USA, 2010, pp. 1-12.
29. Jones AK, Sielken RS, Computer system intrusion detection: a survey, University of Virginia, Technical Report (2000).
30. P Kabiri, and AA Ghorbani Research on intrusion detection and response: a survey International Journal of Network Security 1 2005 84 102
31. I Kantzavelou, and S Katsikas A game-based intrusion detection mechanism to confront internal attackers Computers & Security 29 2010 859 874
32. A Kartit, A Saidi, F Bezzazi, ME Marraki, and A Radi A new approach to intrusion detection system Journal of theoretical and applied information technology 36 2012 284 289
33. C Kolias, G Kambourakis, and M Maragoudakis Swarm intelligence in intrusion detection: a survey Computers & Security 30 2011 625 642
34. Kourai K, Chiba S, HyperSpector: virtual distributed monitoring environments for secure intrusion detection. In: First ACM/USENIX international conference on virtual execution environments, Chicago, IL, USA, 2005, pp. 197-207.
35. Krugel C, Toth T, A survey on intrusion detection systems, Technical University of Vienna, Austria, Technical Report TUV-1841-00-11 (2000), pp. 22-33.
36. RL Krutz, and RD Vines Cloud security: a comprehensive guide to secure cloud computing 2010 Wiley Indianapolis
37. A Lazarevic, V Kumar, and J Srivastava Managing cyber threats: issues, approaches, and challenges 2005 Springer-Verlag New York
38. D Le, and H Wang An effective memory optimization for virtual machine-based systems IEEE Transactions on Parallel and Distributed Systems 22 2011 1705 1713
39. L Li, Zhang G, Nie J, Niu Y, Yao A, The application of genetic algorithm to intrusion detection in MP2P network. In: Third international conference on advances in swarm intelligence, Shenzhen, China, 2012, pp. 390-397.
40. Y Li, J Xia, S Zhang, J Yan, X Ai, and K Dai An efficient intrusion detection system based on support vector machines and gradually feature removal method Expert Systems with Applications 39 2012 424 430
41. TF Lunt A survey of intrusion detection techniques Computers & Security 12 1993 405 418
42. S Mandala, MA Ngadi, and AH Abdullah A survey on MANET intrusion detection International Journal of Computer Science and Security 2 2008 1 11
43. J Mar, IF Hsiao, YC Yeh, CC Kuo, and SR Wu Intelligent intrusion detection and robust null defense for wireless networks International Journal of Innovative Computing Information and Control 8 2012 3341 3359
44. A Mishra, K Nadkarni, A Patcha, and V Tech Intrusion detection in wireless ad-hoc networks IEEE Wireless Communications 11 2004 48 60
45. C Modi, D Patel, B Borisaniya, H Patel, A Patel, M Rajarajan, A survey of intrusion detection techniques in Cloud. Journal of Network and Computer Applications. Available Online 2012.
46. NMMK Mosharaf, and R Boutaba A survey of network virtualization Computer Networks 54 2010 862 876
47. B Mukherjee, LT Heberlein, and KN Levitt Network intrusion detection IEEE Network 8 1994 26 41
48. Mukkamala S, Sung AH, A comparative study of techniques for intrusion detection, In: 15th IEEE international conference on tools with artificial intelligence, Sacramento, California, USA, 2003, pp. 570-577.
49. Murali A, Rao M, A survey on intrusion detection approaches, In: First international conference information and communication technologies, Karachi, Pakistan, 2005, pp. 233-240.
50. P Nikitasha, S Jyotiprakash, M Subasish, and PS Prasanna A security framework for virtualization based computing environment International Journal of Engineering Science and Technology 3 2011 6423 6429
51. B Paramasivan, and KM Pitchai Comprehensive survey on game theory based intrusion detection system for mobile adhoc networks International Journal of Computing Applications 5 2011 23 29
52. A Patcha, and JM Park An overview of anomaly detection techniques: existing solutions and latest technological trends Computer Networks 51 2007 3448 3470
53. Payne BD, Carbone M, Lee W, Secure and flexible monitoring of virtual machines, In: 23rd annual computer security applications conference, Miami Beach, FL, 2007, pp. 385-397.
54. K Pelechrinis, M Iliofotou, and SV Krishnamurthy Denial of service attacks in wireless networks: the case of jammers IEEE Communications Surveys and Tutorials 13 2011 245 257
55. Peng YH, Research of network intrusion detection system based on snort and NTOP, In: Ninth international conference on fuzzy systems and knowledge discovery, Chongqing, China, 2012, pp. 2764-2768.
56. G Reese Cloud application architectures: building applications and infrastructure in the cloud 2009 OReilly Media
57. Sabahi F, Movaghar A, Intrusion detection: a survey, In: Third international conference on system and network communication, Sliema, Malta, 2008, pp. 23-26
58. K Salah, and A Kahtani Improving Snort performance under Linux IET Communications 3 2009 1883 1895
59. K Salah, and A Kahtani Performance evaluation comparison of Snort NIDS under Linux and Windows Server Journal of Network and Computer Applications 33 2010 6 15
60. K Salah, M-A-R Al-Khiaty, R Ahmed, and A Mahdi Performance evaluation of Snort under Windows 7 and Windows Server 2008 Journal of Universal Computer Science 17 2011 1605 1622
61. S Sen, and JA Clark Evolutionary computation techniques for intrusion detection in mobile ad hoc networks Computer Networks 55 2011 3441 3457
62. S Shanbhag, and T Wolf Accurate anomaly detection through parallelism IEEE Network 23 2009 22 28
63. S Shena, Y Li, H Xua, and Q Caoa Signaling game based strategy of intrusion detection in wireless sensor networks Computers & Mathematics with Applications 62 2011 2404 2416
64. Snort, 〈http://www.snort.org〉
65. P Stavroulakis, and M Stamp Handbook of information and communication security 2010 Springer-Verlag New York
66. Y Tan, S Sengupta, and KP Subbalakshmi Analysis of coordinated denial-of-service attacks in IEEE 802.22 networks IEEE Journal on Selected Areas in Communications 29 2011 890 902
67. CJ Tucker, SM Furnell, BV Ghita, and PJ Brooke A new taxonomy for comparing intrusion detection systems Internet Research 17 2007 88 98
68. Vasiliadis G, Ioannidis S, GrAVity: a massively parallel antivirus engine, In: Third international conference on recent advances in intrusion detection, Ottawa, Ontario, Canada, 2010, pp. 79-96.
69. Vasiliadis G, Antonatos S, Polychronakis M, Markatos EP, Ioannidis S, Gnort: high performance network intrusion detection using graphics processors, In: 11th international symposium on recent advances in intrusion detection, Boston, MA, USA, 2008, pp. 116-134.
70. SS Wang, KQ Yan, SC Wang, and CW Liu An integrated intrusion detection system for cluster-based wireless sensor networks Expert Systems with Applications 38 2011 15234 15243
71. X Wang, X Wang, C Cao, and Y Zhu String searching engine for virus scanning IEEE Transactions on Computers 60 2011 1596 1609
72. C Xenakis, C Panos, and I Stavrakakis A comparative evaluation of intrusion detection architectures for mobile ad hoc networks Computers & Security 30 2011 63 80
73. Xiang G, Jin H, Zou D, Zhang X, Wen S, Zhao F, VMDriver: a driver-based monitoring mechanism for virtualization, In: 29th IEEE symposium on reliable distributed systems, New Delhi, 2010, pp. 72-81.
74. M Xie, S Han, B Tian, and S Parvin Anomaly detection in wireless sensor networks: a survey Journal of Network and Computer Applications 34 2011 1302 1325
75. Zhao S, Chen K, Zheng W, The application of virtual machines on system security. In: Fourth ChinaGrid annual conference, Yantai, Shandong, 2009, pp. 222-229.