Simulation, optimisation and integration of Covert Channels, Intrusion Detection and packet filtering systems

Abstract

In a Communication network, an advanced security system should include three security processes, namely a packet filter (Firewall), an Intrusion Detection System (IDS), and a Covert Channels Detection System (CCDS). The Firewall filters the incoming and outgoing network traffic. The IDS detects and stops attacks, such as Denial of Service (DoS) attacks. Covert channels allow individuals to communicate undetectable and exchange hidden information. A CCDS detects and stops covert channels. However, till now, security systems do not include dedicated processes for covert channel detection. In this paper we propose an optimized order regarding the execution of the three processes, and evaluate the system's performance when the LAN network is under different types of attacks. The results show that the proposed order enhances the processing time performance of the system.

5 Figures and Tables

Cite this paper

@article{Frikha2009SimulationOA, title={Simulation, optimisation and integration of Covert Channels, Intrusion Detection and packet filtering systems}, author={Lilia Frikha and Zouheir Trabelsi and Sami Tabbane}, journal={2009 Global Information Infrastructure Symposium}, year={2009}, pages={1-4} }