Experiencing Integrated Network Security: The Development of DIPA (Distributed Intrusion Prevention Architecture)

Authors: Pier Luca Montessoro and Davide Pierattoni Dipartimento di Ingegneria Elettrica, Gestionale e Meccanica Università degli Studi di Udine

Complete Citation

Abstract

The Distributed Intrusion Prevention Architecture is an innovative methodology for effective intrusion prevention in IP networks. Facing security design with a distributed approach, it is possible to perform flow admission, intrusion detection and application of advanced firewall techniques in an integrated fashion. This way both traffic shaping and application layer protection are natively achieved, together with enterprise-specific security policies. The proposed system is not to be intended as alternative solution against the large variety of commercial products and open source security tools. It would become instead an open framework where integrating the power of many existing models and techniques, whose advantages aren’t still fully appreciable. Both methodologies and protocols presented here were also implemented in the software prototype of Distributed Intrusion Prevention Architecture (DIPA). The DIPA security framework aims also at integrating the proposed architecture with existing network technologies and design methodologies.

Annotations

* Picture1.png:

• Picture2.png:
  

• Picture3.png:
  

Related Work

-- AndrewBlaich - 14 Jun 2007