Analysis of Intrusion Detection System Using Trusted Clients
Traditionally firewall has been used to stop the intrusion attempts by an attacker. But firewalls have static configurations that block attacks based on source and destination ports and IP addresses. These are not sufficient to provide security from all the attacks. Therefore, the authors need IDS type systems which could analyze the payload of the packet to detect these attacks. Proposed IDS is in two phases to identified attacks. In Phase-I, A database is maintained in the server side which contains the authorized IP address of the Local Area Network (LAN). If the IP address of the incoming packets match in stored IP address then proposed concept allow that packet as normal packet because of predefined authorized IP address which is increase efficiency of the IDS.