Security configuration management in intrusion detection and prevention systems
| Autor: | Nizar Bouabdallah, Yassir Alhazmi, Khalid Alsubhi, Raouf Boutaba |
|---|---|
| Rok vydání: | 2012 |
| Předmět: |
Configuration management
Computer Networks and Communications Computer science Network security business.industry Intrusion detection system Computer security model Computer security computer.software_genre Security information and event management Information system Network performance Electrical and Electronic Engineering Enterprise information system Safety Risk Reliability and Quality business computer |
| Zdroj: | International Journal of Security and Networks. 7:30 |
| ISSN: | 1747-8413 1747-8405 |
| DOI: | 10.1504/ijsn.2012.048493 |
| Popis: | This paper aims to study the impact of security enforcement levels on the performance and usability of an enterprise information system. We develop a new analytical model to investigate the relationship between the Intrusion Detection and Prevention System performance and the rules mode selection. In particular, we analyze the IDPS rule-checking process along with its consequent action on the resulting security of the network and on the average service time per event. Simulation was conducted to validate our performance analysis study. The results demonstrate that it is desirable to strike a balance between system security and network performance. |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|