A Review Paper on Comparison of various Intrusion Detection and Prevention Systems

Abstract

Intrusion Detection Systems (IDS) are used to notice network anomalies and preserve the protection of the network hosts. They have a lengthy record however even presently their affectivity is not a hundred percent and correlates proportionally to the range of detected false positives. Nevertheless, IDS are viewed as beneficial in particular when new community hacking tools are emerging. This permits for a higher variety of customers to test with cutting-edge exploits and will increase the common protection hazard of each online system. Snort, the de-facto enterprise popular open-source solution, is a mature product that has been handy for over a decade. Suricata presents a new method to signature-based intrusion detection and takes benefit of present-day technological know-how such as manner multi-threading to enhance processing speed. Snort and Suricata are two rule-based open-source community intrusion detection architectures discussed in this study. We ran every product on a multi-core pc and evaluated the speed, memory requirements, and accuracy of the detection engines in a range of experiments.