Skip to main content
SpringerLink
Log in

WEMA to Speed up NIDS Packet Header Detection Engine

  • Conference paper
  • First Online:
Proceedings of the International Conference on Advanced Intelligent Systems and Informatics 2016 (AISI 2016)

Part of the book series: Advances in Intelligent Systems and Computing ((AISC,volume 533))

Abstract

The traditional firewall provides the first level of defense for computer networks and prevents unauthorized people to access the internal networks from the external attacks. Thus, the Network Intrusion detection System (NIDS) is complementary to the firewall. One of the major functions of NIDS is to act as misuse detection. In This paper we used A Neural network with multi-connect architecture and Weighted Exact Matching Algorithm (WEMA) to enhance the speed of matching process between the incoming packets header and SNORT-NIDS rule sets.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 169.00
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 219.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

  1. Abedin, M., Nessa, S., Khan, L., Thuraisingham, B.: Detection and resolution of anomalies in firewall policy rules. In: Damiani, E., Liu, P. (eds.) Data and Applications Security 2006. LNCS, vol. 4127, pp. 15–29. Springer, Heidelberg (2006)

    Chapter  Google Scholar 

  2. Snort – The open source network intrusion. Detection system. http://www.snort.org

  3. Coit, C.J., Staniford, S., Mchlerney, J.: Towards faster string matching for intrusion detection or exceeding the speed of snort, pp. 367–373. IEEE (2001)

    Google Scholar 

  4. Xiang, Y.: Protecting information infrastructure from DDoS attacks by MADF. Int. J. High Perform. Comput. Netw. 4(5/6), 357–367 (2006)

    Article  Google Scholar 

  5. Deri, L.: High-speed dynamic packet filtering. J. Netw. Syst. Manag. (ACM) 15, 401–415 (2007)

    Article  Google Scholar 

  6. Lecroq, C.C.: Handbook of Exact String matching Algorithm. King’s College Publications, London (2004). ISBN 0954300645

    MATH  Google Scholar 

  7. Kaream, E.: Alternative hopfield neural network with multi-connect architecture. Journal of College of Education, Computer Department, Al-mustansiryah university, Baghdad, Iraq (2004)

    Google Scholar 

  8. Hlayel, A.A., Hnaif, A.A.: An algorithm to improve the performance of string matching. J. Inf. Sci. (2014). doi:10.1177/0165551513519039. Accessed 14 Jan 2014

Download references

Acknowledgment

I would like to thank Al-zaytoonah University of Jordan for supporting this research paper.

Author information

Authors and Affiliations

  1. Computer Networks Department, Al-Zaytoonah University of Jordan, Amman, 11733, Jordan

    Adnan A. Hnaif

Authors
  1. Adnan A. Hnaif
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Adnan A. Hnaif .

Editor information

Editors and Affiliations

  1. Faculty of Computers & Information, Cairo University, Giza, Egypt

    Aboul Ella Hassanien

  2. Dubai International Academic City, The British University, Dubai, United Arab Emirates

    Khaled Shaalan

  3. CS Dept. Faculty of Computers and Inform, Suez Canal University CS Dept. Faculty of Computers and Inform, Ismailia, Egypt

    Tarek Gaber

  4. Ahmed Orabi Square , Menouf, Egypt

    Ahmad Taher Azar

  5. Faculty of Computer & Information Scienc, Ain Shams University Faculty of Computer & Information Scienc, Cairo, Egypt

    M. F. Tolba

Rights and permissions

Reprints and permissions

Copyright information

© 2017 Springer International Publishing AG

About this paper

Cite this paper

Hnaif, A.A. (2017). WEMA to Speed up NIDS Packet Header Detection Engine. In: Hassanien, A., Shaalan, K., Gaber, T., Azar, A., Tolba, M. (eds) Proceedings of the International Conference on Advanced Intelligent Systems and Informatics 2016. AISI 2016. Advances in Intelligent Systems and Computing, vol 533. Springer, Cham. https://doi.org/10.1007/978-3-319-48308-5_50

Download citation

  • DOI: https://doi.org/10.1007/978-3-319-48308-5_50

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-48307-8

  • Online ISBN: 978-3-319-48308-5

  • eBook Packages: EngineeringEngineering (R0)

Publish with us

Policies and ethics

Search

Navigation