• KSII Transactions on Internet and Information Systems
    Monthly Online Journal (eISSN: 1976-7277)

Intrusion Detection System for Home Windows based Computers

Vol. 13, No. 9, September 29, 2019
10.3837/tiis.2019.09.021, Download Paper (Free):

Abstract

The paper is devoted to the detailed description of the distributed system for gathering data from Windows-based workstations and servers. The research presented in the beginning demonstrates that neither a solution for gathering data on attacks against Windows based PCs is available at present nor other security tools and supplementary programs can be combined in order to achieve the required attack data gathering from Windows computers. The design of the newly proposed system named Colander is presented, too. It is based on a client-server architecture while taking much inspiration from previous attempts for designing systems with similar purpose, as well as from IDS systems like Snort. Colander emphasizes its ease of use and minimum demand for system resources. Although the resource usage is usually low, it still requires further optimization, as is noted in the performance testing. Colander’s ability to detect threats has been tested by real malware, and it has undergone a pilot field application. Future prospects and development are also proposed.


Statistics

Show / Hide Statistics

Statistics (Cumulative Counts from December 1st, 2015)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.


Cite this article

[IEEE Style]
M. Zuzčák, T. Sochor1 and M. Zenka, "Intrusion Detection System for Home Windows based Computers," KSII Transactions on Internet and Information Systems, vol. 13, no. 9, pp. 4706-4726, 2019. DOI: 10.3837/tiis.2019.09.021.

[ACM Style]
Matej Zuzčák, Tomáš Sochor1, and Milan Zenka. 2019. Intrusion Detection System for Home Windows based Computers. KSII Transactions on Internet and Information Systems, 13, 9, (2019), 4706-4726. DOI: 10.3837/tiis.2019.09.021.