Please use this identifier to cite or link to this item:
|Title:||Effectiveness analysis of public rule sets used in snort intrusion detection system||Other Titles:||Snort saldiri tespit sisteminde kullanilan açik kural setlerinin etkinlik analizi||Authors:||Gündoğdu, I.
Selçuk, Ali Aydın
|Keywords:||Intrusion Detection System
Public Rule Sets
Intrusion Detection Systems
Web application attacks
|Issue Date:||2021||Publisher:||Institute of Electrical and Electronics Engineers Inc.||Abstract:||Snort is one of the most used open source intrusion detection systems today. It is also supported by a large number of open source rulesets. The purpose of this study is to test the effectiveness of the public rule sets developed for the Snort intrusion detection system against different types of attack traffic. For this purpose, by configuring the Snort attack detection system with different rule sets, experiments have been conducted to measure whether each rule set prevents different attack types such as CVE-referenced vulnerability exploitation attacks, web application attacks and malware traffics. During the experiments, the rule sets were tested separately as well as tests in which all the rule sets were used together. As a result of the experiments, it was observed that the most effective rule set when used alone was the Talos rule set, and the highest efficiency was achieved when all the rule sets were used together. © 2021 IEEE.||Description:||29th IEEE Conference on Signal Processing and Communications Applications, SIU 2021 -- 9 June 2021 through 11 June 2021 -- 170536||URI:||https://doi.org/10.1109/SIU53274.2021.9477698
|Appears in Collections:||Bilgisayar Mühendisliği Bölümü / Department of Computer Engineering|
Scopus İndeksli Yayınlar Koleksiyonu / Scopus Indexed Publications Collection
WoS İndeksli Yayınlar Koleksiyonu / WoS Indexed Publications Collection
Show full item record
checked on Dec 26, 2022
Items in GCRIS Repository are protected by copyright, with all rights reserved, unless otherwise indicated.