TY - GEN
T1 - Simulation, optimisation and integration of covert channels, intrusion detection and packet filtering systems
AU - Frikha, Lilia
AU - Trabelsi, Zouheir
AU - Tabbane, Sami
PY - 2009
Y1 - 2009
N2 - In a Communication network, an advanced security system should include three security processes, namely a packet filter (Firewall), an Intrusion Detection System (IDS), and a Covert Channels Detection System (CCDS). The Firewall filters the incoming and outgoing network traffic. The IDS detects and stops attacks, such as Denial of Service (DoS) attacks. Covert channels allow individuals to comm unicate undetectable and exchange hidden information. A CCDS detects and stops covert channels. However, till now, security systems do not include dedicated processes for covert channel detection. In this paper we propose an optimized order regarding the execution of the three processes, and evaluate the system's performance when the LAN network is under different types of attacks. The results show that the proposed order enhances the processing time performance of the system. copy; 2009 IEEE.
AB - In a Communication network, an advanced security system should include three security processes, namely a packet filter (Firewall), an Intrusion Detection System (IDS), and a Covert Channels Detection System (CCDS). The Firewall filters the incoming and outgoing network traffic. The IDS detects and stops attacks, such as Denial of Service (DoS) attacks. Covert channels allow individuals to comm unicate undetectable and exchange hidden information. A CCDS detects and stops covert channels. However, till now, security systems do not include dedicated processes for covert channel detection. In this paper we propose an optimized order regarding the execution of the three processes, and evaluate the system's performance when the LAN network is under different types of attacks. The results show that the proposed order enhances the processing time performance of the system. copy; 2009 IEEE.
KW - Covert channel system
KW - Detection TCP/IPprotocols
KW - Firewall
KW - Intrusion
UR - http://www.scopus.com/inward/record.url?scp=71249120084&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=71249120084&partnerID=8YFLogxK
U2 - 10.1109/GIIS.2009.5307102
DO - 10.1109/GIIS.2009.5307102
M3 - Conference contribution
AN - SCOPUS:71249120084
SN - 9781424446247
T3 - 2009 Global Information Infrastructure Symposium, GIIS '09
BT - 2009 Global Information Infrastructure Symposium, GIIS '09
T2 - 2009 Global Information Infrastructure Symposium, GIIS '09
Y2 - 23 June 2009 through 26 June 2009
ER -