s2ipt: A Lightweight Network Intrusion Detection/Prevention System based on IPtables

Gerardo Canfora; Antonio Pirozzi; Aaron Visaggio

Research.Publish.Connect.

*Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Country:
Subject:

Advanced Search Affiliations Search

If you're looking for an exact phrase use quotation marks on text fields.

Proceedings

Proceedings Search *Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

Papers

Papers Search *Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

Authors

Authors Search *Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

Advanced Search

Paper

s2ipt: A Lightweight Network Intrusion Detection/Prevention System based on IPtables

Topics: Network Security

In Proceedings of the 14th International Joint Conference on e-Business and Telecommunications - Volume 0ICETE, 462-467, 2017 , Madrid, Spain

Authors: Gerardo Canfora ¹ ; Antonio Pirozzi ² and Aaron Visaggio ¹

Affiliations: ¹ University of Sannio, Italy ; ² Koine srl, Italy

Keyword(s): Intrusion Detection System, Intrusion Prevention System, IPtables, Snort, NIDS, NIPS, Application-level Control Flow, Netfilter.

Related Ontology Subjects/Areas/Topics: Information and Systems Security ; Network Security ; Wireless Network Security

Abstract: Since each organization has its own security culture and background, there is not an out-of-the-box solution that fits all the possible security requirements. There may be some contexts in which it is necessary to monitor and prevent certain application-level attacks with less impact on pre-existent configuration. For example, there may be some constraints on processing resources of some embedded devices. Starting from this consideration, we developed s2ipt, a python-powered tool which aims to implement a lightweight Netfilter-based network intrusion detection and prevention system (IDS/IPS) by translating Snort community rules into iptables rulesset. s2ipt utilizes the netfilter string matching module to detect application-level attacks. Netfilter reduces the impact on a system, has less memory and CPU footprint, which makes it suitable to run even on low-cost devices than a solution like Snort. s2ipt allows iptables to detect application layer attacks in a transparent way, in fact it only adds new application layer ruleset leaving the existing ones unchanged. (More)

CC BY-NC-ND 4.0

Guest: Register as new SciTePress user now for free.

SciTePress user: please login.

My Papers

You are not signed in, therefore limits apply to your IP address 18.224.55.63

In the current month:

Recent papers: 100 available of 100 total

2⁺ years older papers: 200 available of 200 total

Paper citation in several formats:

Canfora, G.; Pirozzi, A. and Visaggio, A. (2017). s2ipt: A Lightweight Network Intrusion Detection/Prevention System based on IPtables. In Proceedings of the 14th International Joint Conference on e-Business and Telecommunications (ICETE 2017) - SECRYPT; ISBN 978-989-758-259-2; ISSN 2184-3236, SciTePress, pages 462-467. DOI: 10.5220/0006431904620467

@conference{secrypt17,
author={Gerardo Canfora. and Antonio Pirozzi. and Aaron Visaggio.},
title={s2ipt: A Lightweight Network Intrusion Detection/Prevention System based on IPtables},
booktitle={Proceedings of the 14th International Joint Conference on e-Business and Telecommunications (ICETE 2017) - SECRYPT},
year={2017},
pages={462-467},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0006431904620467},
isbn={978-989-758-259-2},
issn={2184-3236},
}

TY - CONF

JO - Proceedings of the 14th International Joint Conference on e-Business and Telecommunications (ICETE 2017) - SECRYPT
TI - s2ipt: A Lightweight Network Intrusion Detection/Prevention System based on IPtables
SN - 978-989-758-259-2
IS - 2184-3236
AU - Canfora, G.
AU - Pirozzi, A.
AU - Visaggio, A.
PY - 2017
SP - 462
EP - 467
DO - 10.5220/0006431904620467
PB - SciTePress