ENHANCED NETWORK INTRUSION DETECTION SYSTEM

Abstract

The internet is constantly evolving and new vulnerabilities and exploits are found regularly, which motivates the need of an enhanced Network Intrusion Detection system (eNIDS) to be integral part of the network. An eNIDS provide an additional level of protection to detect the presence of an intruder, and help to provide accountability for the attacker's action. Some systems may attempt to stop an intrusion but this is neither required nor expected of a monitoring system. An eNIDS is primarily focused on identifying possible incidents, logging information about them, and reporting attempts. It knows how long the input buffer for an application is and capable of detecting all overflow attacks aimed at this service and have a complete coverage property. Existing Network Intrusion Detection Systems (NIDS) were surveyed to find the present extent of protection and actions on attackers. The design of the eNIDS was detailed using Use-case diagram and corresponding Data flow diagram. Java was used to implement the design of the eNIDS.