Recent experimental work by Androulidakis and Papavassiliou (IET Commun 2(3):399, 2008; IEEE Netw 23(1):6, 2009)\r\nhas shown that it is possible to maintain a high level of network security while selectively inspecting packets for\r\nthe existence of intrusive activity, thereby resulting in a minimal amount of processing overhead. In this paper, a\r\nstatistical approach for the modeling of network intrusions as Markov processes is introduced. The theoretical\r\nfindings presented here confirm the earlier experimental results of Androulidakis and Papavassiliou. A common\r\nnotion about network intrusion detection systems is that every packet arriving into a network must be inspected\r\nin order to prevent intrusions. This investigation, together with the earlier experimental results, disproves that\r\nnotion. Additional experimental testing of a corporate local area network is reported.
Loading....