Open Access Repository

Intrusion Detection by Intelligent analysis of data across multiple gateways in real-time.


Downloads per month over past year

Scanlan, JD ORCID: 0000-0003-2285-8932, Lorimer, S, Hartnett, J and Manderson, K 2004 , 'Intrusion Detection by Intelligent analysis of data across multiple gateways in real-time.', paper presented at the Australian Telecommunication Networks, 8 - 10 December 2004, Bondi Beach.

This is the latest version of this item.

IntelligentAnal...pdf | Download (225kB)
Available under University of Tasmania Standard License.

| Preview


Current firewalls and intrusion detection systems are generally designed to protect a single gateway in order to provide protection for machines residing behind the gateway on an internal network. When considering a network
incorporating multiple gateways across a range of IP addresses exposed to the Internet, interesting data can be gathered with regard to the types of scans occurring across these gateways from the outside. The validity of using a central server to amalgamate, reduce and analyse the log files of each gateway is investigated in order to examine the activities of the scans across multiple gateways and port numbers. The results from this analysis can then be used to act against an attack through heuristic driven rule creation.

Item Type: Conference or Workshop Item (UNSPECIFIED)
Authors/Creators:Scanlan, JD and Lorimer, S and Hartnett, J and Manderson, K
Keywords: Intrusion Detection, Firewall, Multiple Gateway, Analysis
Item Statistics: View statistics for this item

Available Versions of this Item

Actions (login required)

Item Control Page Item Control Page