CONFERENCE PROCEEDINGS
Advanced Search
Home > Proceedings > Volume 4232 > Article
Paper
21 February 2001 Intrusion detection considerations for switched networks
Thomas D. Tarman, Edward L. Witzke
Author Affiliations +
Proceedings Volume 4232, Enabling Technologies for Law Enforcement and Security; (2001) https://doi.org/10.1117/12.417520
Event: Enabling Technologies for Law Enforcement, 2000, Boston, MA, United States
Abstract
Many private and public networks are based on network switching technologies. However, switched networks present a number of challenges to intrusion detection equipment. These challenges include limited visibility of network flows at the edges of the network, high-speed packet processing, and highly-aggregated flows in the core. In addition, switched networks typically implement protocols specific for Layer 2 functions, such as connection establishment and connection routing, which can be attacked to deny service to higher layer protocols and applications. Since these attacks cannot be detected by Internet Protocol intrusion detection equipment. Layer 2 intrusion detection is required. This paper describes an approach for performing intrusion monitoring in switched, Layer 2 networks, specifically, Asynchronous Transfer Mode networks.
© (2001) COPYRIGHT Society of Photo-Optical Instrumentation Engineers (SPIE). Downloading of the abstract is permitted for personal use only.
Citation Download Citation
Thomas D. Tarman and Edward L. Witzke "Intrusion detection considerations for switched networks", Proc. SPIE 4232, Enabling Technologies for Law Enforcement and Security, (21 February 2001); https://doi.org/10.1117/12.417520
ACCESS THE FULL ARTICLE
ORGANIZATIONAL
Sign in with credentials provided by your organization.
INSTITUTIONAL
Select your institution to access the SPIE Digital Library.
SELECT YOUR INSTITUTION
PERSONAL
Sign in with your SPIE account to access your personal subscriptions or to use specific features such as save to my library, sign up for alerts, save searches, etc.
PERSONAL SIGN IN
No SPIE Account? Create one
PURCHASE THIS CONTENT
SUBSCRIBE TO DIGITAL LIBRARY
50 downloads per 1-year subscription
Members: $195
Non-members: $335 ADD TO CART
25 downloads per 1 - year subscription
Members: $145
Non-members: $250 ADD TO CART
PURCHASE SINGLE ARTICLE
Includes PDF, HTML & Video, when available
Members: $17.00
Non-members: $21.00 ADD TO CART
PROCEEDINGS
 8 PAGES
DOWNLOAD PAPER SAVE TO MY LIBRARY
GET CITATION
Lens.org Logo
CITATIONS
Cited by 5 scholarly publications.
Advertisement
Advertisement
RIGHTS & PERMISSIONS
Get copyright permission  Get copyright permission on Copyright Marketplace
KEYWORDS
Sensors
Computer intrusion detection
Asynchronous transfer mode
Switches
Network architectures
Sensor networks
Interfaces
RELATED CONTENT
Improved security monitoring method for network bordary
Proceedings of SPIE (March 20 2013)
Design of intrusion detection systems on the internet of things...
Proceedings of SPIE (April 27 2021)
Networking 20 billion devices
Proceedings of SPIE (May 03 2018)
Recent efforts on intelligent optical networks for ASON
Proceedings of SPIE (February 08 2005)
Dynamic immune intrusion detection system for IPv6
Proceedings of SPIE (March 28 2005)
Process query systems for network security monitoring
Proceedings of SPIE (May 20 2005)
Virtual terrain a security based representation of a computer...
Proceedings of SPIE (March 17 2008)
Subscribe to Digital Library
Receive Erratum Email Alert
Back to Top