Problem Statement

2
PROBLEM STATEMENT INTRUSION PREVENTION SYSTEM BACKGROUND : Hacking has turned out to be a major problem in today's world connected by Internet and other secure networks. Hackers always find new ways to breach networks and steal valuable information about the victim or install malicious software to monitor the financial activity of the victim. A hacker is someone who seeks and exploits weaknesses in a computer system or computer network. Hackers are motivated by a multitude of reasons, such as profit, protest, challenge or enjoyment. The only way a hacker is able to gain control or intrude into another's system is through bypassing the network security setup by the remote victim using software exploits and identity thefts or damaging the security system by launching massive DoS[Denial-of-Service] attacks. Security and data breaches cause massive financial losses to industries to the tune of billions of dollars. Acording to a recent report by Inc. magazine, companies lose $400bn to hackers each year and the loss is estimated to grow to $1 trillion by 2020. Hence, it is very important to study effective mechanisms that stop network attacks and secure our work environment. Problem statement : Intrusion prevention systems (IPS), also known as intrusion detection and prevention systems (IDPS), are network security systems that monitor network and/or system activities for malicious activity. The main functions of intrusion prevention systems are to identify malicious activity, log information about this activity, attempt to block/stop it, and report it. We intend to design an IPS software that can run on a Host machine and aid in preventing network intrusion attacks on the host system. The following are the goals of the Host-based IPS project : 1. To design a light-weight intrusion prevention software for a Windows/Linux OS based host system. 2. To construct network monitoring capabilities in the software. 3. To design statistical and signature based security features that provide for early detection of network attacks. 4. To implement response mechanisms against network attacks. 5. To provide users facility to design their own network security rules and implement them via the IPS software.

description

intrusion prevention system

Transcript of Problem Statement

PROBLEM STATEMENTINTRUSION PREVENTION SYSTEM

BACKGROUND :

Hacking has turned out to be a major problem in today's world connected by Internet and other secure networks. Hackers always find new ways to breach networks and steal valuable information about the victim or install malicious software to monitor the financial activity of the victim. A hacker is someone who seeks and exploits weaknesses in a computer system or computer network. Hackers are motivated by a multitude of reasons, such as profit, protest, challenge or enjoyment. The only way a hacker is able to gain control or intrude into another's system is through bypassing the network security setup by the remote victim using software exploits and identity thefts or damaging the security system by launching massive DoS[Denial-of-Service] attacks. Security and data breaches cause massive financial losses to industries to the tune of billions of dollars. Acording to a recent report by Inc. magazine, companies lose $400bn to hackers each year and the loss is estimated to grow to $1 trillion by 2020. Hence, it is very important to study effective mechanisms that stop network attacks and secure our work environment.

Problem statement :

Intrusion prevention systems (IPS), also known as intrusion detection and prevention systems (IDPS), are network security systems that monitor network and/or system activities for malicious activity. The main functions of intrusion prevention systems are to identify malicious activity, log information about this activity, attempt to block/stop it, and report it. We intend to design an IPS software that can run on a Host machine and aid in preventing network intrusion attacks on the host system. The following are the goals of the Host-based IPS project :

1. To design a light-weight intrusion prevention software for a Windows/Linux OS based host system.

2. To construct network monitoring capabilities in the software.3. To design statistical and signature based security features that provide for

early detection of network attacks.4. To implement response mechanisms against network attacks.5. To provide users facility to design their own network security rules and

implement them via the IPS software.