ScienceGate Book Chapters
JOURNAL ARTICLE

Kernel-level intrusion detection method using simplification and grouping

Boheung ChungSeungho RyuJeong‐Nyeo KimJongsoo Jang

Year: 2005 Journal:   The 7th International Conference on Advanced Communication Technology, 2005, ICACT 2005. Pages: 251-254
DOI: 10.1109/icact.2005.245838
   Get Full-Text PDF    Get Analytical Report

Abstract

This paper proposes the kernel-level intrusion detection method (KIDM) using simplification and grouping of intrusion detection rules. These rules group into group-rule and common-rule generated by simplification. The intrusion detection is separated into common detection and extended detection step. The packet is checked by common detection using the common-rule. If this step detects nothing, the packet is forwarded to its destination. If not, it is passed into the extended detection using the group-rule. Through grouping of similar detection rules, the search space and searching time can be greatly minimized. Using the simplified rule in intrusion detection, the packet inspection time can be largely reduced. With the help of these two steps, fast and effective intrusion detection is possible in network nodes such as router and switch

Keywords:
Intrusion detection system Computer science Network packet Anomaly-based intrusion detection system Router Kernel (algebra) Data mining Misuse detection Anomaly detection Pattern recognition (psychology) Artificial intelligence Mathematics Computer network

Metrics

0
Cited By
0.00
FWCI (Field Weighted Citation Impact)
9
Refs
0.24
Citation Normalized Percentile
Is in top 1%
Is in top 10%

Topics

Network Security and Intrusion Detection
Physical Sciences →  Computer Science →  Computer Networks and Communications
Network Packet Processing and Optimization
Physical Sciences →  Computer Science →  Hardware and Architecture
Internet Traffic Analysis and Secure E-voting
Physical Sciences →  Computer Science →  Artificial Intelligence

Related Documents

JOURNAL ARTICLE

An Intrusion Detection Approach Using SVM and Multiple Kernel Method

Yuping LiWeidong LiGuoqiang Wu

Journal:   International Journal of Advancements in Computing Technology Year: 2012 Vol: 4 (1)Pages: 463-469
JOURNAL ARTICLE

iKern: Advanced Intrusion Detection and Prevention at the Kernel Level Using eBPF

Hassan Jalil HadiMubashir AdnanYue CaoFaisal HussainNaveed AhmadMohammed Ali AlsharaYasir Javed

Journal:   Technologies Year: 2024 Vol: 12 (8)Pages: 122-122
DISSERTATION

Improving Intrusion Detection Systems using Kernel modules

Pinto, Afonso José Resende

University:   Open Repository of the University of Porto (University of Porto) Year: 2023
JOURNAL ARTICLE

Kernel-level intrusion detection system for minimum packet loss

Boheung ChungJeong‐Nyeo KimSungwon SohnCheehang Park

Year: 2004 Pages: 207-212
JOURNAL ARTICLE

Poverty level grouping using SAW method

Elisabet Yunaeti AnggraeniMiftachul HudaAndino MaselenoJimaain SafarKamarul Azmi JasmiAhmad Kilani MohamedAminudin HehsanBushrah BasironSiti Suhaila IhwaniWan Hassan Wan EmbongAhmad Marzuki MohamadSulaiman Shakib Mohd. NoorAlmira Nabila FauziDona Ari WijayaMoh. Masrur

Journal:   International Journal of Engineering & Technology Year: 2018 Vol: 7 (2.27)Pages: 218-218
© 2026 ScienceGate Book Chapters — All rights reserved.