Please use this identifier to cite or link to this item: https://repository.cihe.edu.hk/jspui/handle/cihe/1271
DC FieldValueLanguage
dc.contributor.authorChan, Anthony Hing-Hungen_US
dc.contributor.otherBarry, B. I. A.-
dc.date.accessioned2021-08-12T10:21:51Z-
dc.date.available2021-08-12T10:21:51Z-
dc.date.issued2013-
dc.identifier.urihttps://repository.cihe.edu.hk/jspui/handle/cihe/1271-
dc.description.abstractConvergence in networks and applications enables carrying voice, video, and other data on the same IP-based infrastructure, and provides various services related to these kinds of data in a unified way. Such a scheme benefits businesses substantially considering the lesser cost of building and managing a single network infrastructure instead of two separate ones. However, the same scheme poses serious threats to security solutions in general, and intrusion detection systems (IDSs) in particular. Inherited flaws and vulnerabilities in TCP/IP protocols at lower layers make voice susceptible to risks it has never been subjected to before in public switched telephone networks (PSTNs). Signaling and data delivery protocols at application layer have their weaknesses too which make breaching of confidentiality and integrity relatively easy. In this paper, we present the design and implementation of a hybrid, host-based intrusion detection system that is suitable for converged environments. Our design is unique in terms of providing an efficient combination of specification-based and signature-based detection techniques. Specification-based and signature-based detection modules provide solid awareness of the semantics as well as the syntax of the protocols involved. Our solution goes beyond addressing the issues of application layer protocols to address transport and network layer protocols as well in a unified way. The feasibility of our design is proven through the excellent detection accuracy and reasonable performance evaluation figures we get from our experiment.en_US
dc.language.isoenen_US
dc.publisherWileyen_US
dc.relation.ispartofSecurity and Communication Networksen_US
dc.titleArchitecture and performance evaluation of a hybrid intrusion detection system for IP telephonyen_US
dc.typejournal articleen_US
dc.identifier.doi10.1002/sec.174-
dc.contributor.affiliationSchool of Computing and Information Sciencesen_US
dc.relation.issn1939-0122en_US
dc.description.volume6en_US
dc.description.issue12en_US
dc.description.startpage1539en_US
dc.description.endpage1555en_US
dc.cihe.affiliatedNo-
item.fulltextWith Fulltext-
item.grantfulltextopen-
item.openairecristypehttp://purl.org/coar/resource_type/c_6501-
item.cerifentitytypePublications-
item.openairetypejournal article-
item.languageiso639-1en-
crisitem.author.deptYam Pak Charitable Foundation School of Computing and Information Sciences-
crisitem.author.orcid0000-0001-7479-0787-
Appears in Collections:CIS Publication
Files in This Item:
File Description SizeFormat
View Online80 BHTMLView/Open
SFX Query Show simple item record

Google ScholarTM

Check

Altmetric

Altmetric


Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.