A survey on network attacks and defence-in-depth mechanism by intrusion detection system

Abstract

Intrusion Detection System (IDS) is almost new technology in the area of computer and Network security system. It has been experimented all over the world for recent years. In this thesis we have proposed Intrusion detection system by identify different attacks at different layers in the Internet protocol stack. Using this system computer and network system can be made more secure and robust. Our goal in this thesis is to develop an Intrusion Detection system, which will be able help to secure the network, give more information to the administrator to take necessary action when the computer or network system is attacked. Prevention and detection measures help us to stop unauthorized users from accessing any part of computer and network system. The system must be implemented in a way so that the network admin can see and take appropriate action by monitoring all logging information gathered by IDS. Such an implementation can provide computer or network security system. In my thesis, I have done a survey about different attacks that can occur in different layers of the network protocol stack to attack host machines. Some part of these proposed IDS has been implemented by us.