How can I get knowledge for creating Intrusion Prevention System Algorithm?

More Md. Nadir Bin Ali's questions See All

IPS inspired by bio algorithm? Is there anybody working on it?

I am working on IPS need to relate bio algorithm with IPS. Need study material and concept.

02 March 2016 6,227 0 View

Is there a powerful system for the security of the systems distributed on IoT systems?

02 March 2021 3,858 10 View

How can I integrate a routing protocol in a tiny device (e.g. Raspberry Pi)?

Hi Community, I'm facing the issue of integration/compiling a new routing protocol in a WSN simulator. The final goal is to successfully add, configure this routing protocol in hardware devices...

01 March 2021 9,332 6 View

Timeout error!! Processor in the loop (PIL) using STM32F4 Matlab 2018a?

Dear Researchers I am trying to perform a PIL simulation using STM32F4 Discovery board and comunication serial USB TO TTL. During simulation I receive the following timeout error: An error...

01 March 2021 2,327 1 View

What are the patterns of human behavior that lead to COVID-19 infections?

Does data from contact tracing help in establishing patterns of behavior and social interactions that lead to infections? There are cases here in the Philippines where patients have no travel...

25 February 2021 9,002 13 View

How vulnerable is water and wastewater infrastructure to cyber terrorism in an age of IoT?

Im looking for any papers, reports,articles, links etc on information on How vulnerable is water and wastewater infrastructure to cyber terrorism in an age of IoT.

24 February 2021 2,750 4 View

Why CNN algorithm performs well in Network Intrusion Detection based on some recent resources?

Most of the papers have compared different hyperparameters such as layers, initializers, activation function, and optimizer algorithm in the CNN algorithm for detecting network intrusion. This is...

24 February 2021 4,578 4 View

Are there any databases for gene co-expression or expression pattern clustering?

I am currently working on gene clustering based on co-expression pattern in mouse brain. The problem is I do not have some solid way to test my result. Are there any suggestions for databases...

22 February 2021 4,374 3 View

What is/are the best ML classifier(s) for Sentinel2 images?

Hi I am trying to segment a sentinel2 image. At this stage, I want to run a binary classifier that assigns each pixel to either farm or non-farm pixel. For this purpose, I have 4 10m bands...

15 February 2021 3,596 9 View

How do I categories into groups on SPSS?

I am using the 'Revised Cyber Bullying Inventory'. This instrument has 2 sub-scales (bully scale and victim scale). From the responses, they will be divided into 4 groups (pure cyberbullies, pure...

13 February 2021 5,787 4 View

How to increase coupling range (distance between reader and sensor coils) in LC resonance circuit?

Hello great researchers, I am working on a wireless pressure monitoring project where sensing part is actually an LC resonance sensor and I am using a planar coil as a reader to get wireless...

11 February 2021 4,148 5 View

Mohammad Ahmadzadeh Popular answer

Search in IEEE.explore.org

Shafagat Mahmudova

Dear Md. Nadir Bin Ali ,

Look the links, may be useful.

http://www.ijcta.com/documents/volumes/vol4issue5/ijcta2013040505.pdf

http://www.cs.huji.ac.il/~shimritd/phd/thesis.pdf

Regards, Shafagat

Md. Nadir Bin Ali

Thanks a lot Dr. Shafagat Mahmudova, expecting this material will help me a lot. Hope I will get continuous help from you in this regard.

Sanjay Chakraborty

The below links may be useful for you....

https://www.sans.org/reading-room/whitepapers/detection/algorithm-based-approaches-intrusion-detection-response-1413

http://link.springer.com/chapter/10.1007%2F978-3-642-28798-5_20

http://link.springer.com/chapter/10.1007%2F978-3-540-45080-1_91

http://link.springer.com/chapter/10.1007%2F978-3-642-30111-7_70

Daniel Fernando Pigatto

If you are searching for something more applied, my suggestion would be to take a look at SNORT software. It is a free and open source network intrusion prevention system (NIPS) and network intrusion detection system (NIDS).

Good luck!

Regards,

Daniel

https://www.snort.org/

Thanks # Mr. Tim Bass

Based on your concept, if you have document please sent it to me. Thanks a lot !!!!

Mohammad Ahmadzadeh

Yasser Auda

study SNORT even latest NGIPS using it such as Cisco FirePOWER

Khin Mo Sue

Thank you so much for the answers

Sanoop Mallissery

SNORT is one of the best network IDS tool that you can study to get a good start. But SNORT is not checking the semantic and without that it may conclude that it is an intrusion (Case of false positive and false negative is more). i.e It works by comparing a network packet with a set of pre-defined signatures (Snort rules) which specify certain patterns often associated with malicious activities. However, there is a semantic gap between what Snort captures (packet patterns) and what a user really wants to know (malicious activities), and the connection between the two is not always certain.

So nowadays the trend is to use a logic relationship finder before concluding it is an intrusion. Better study the concept of SnIPS and this help you to judge the attacks more prominently.

SnIPS works by mapping a Snort alert into a logic predicate describing the condition a user really cares about (e.g. machine compromised), along with a tag indicating the strength of the belief.

http://people.cs.ksu.edu/~xou/argus/software/snips/

Regards

Sanoop