28 May 2013 Quantitative analysis of intrusion detection systems: Snort and Suricata
Author Affiliations +
Given competing claims, an objective head-to-head comparison of the performance of both the Snort R and Suricata Intrusion Detection Systems is needed. In this paper, we present a comprehensive quantitative comparison of the two systems. We have developed a rigorous testing framework that examines the performance of both systems as we scale system resources. Our results show that a single instance of Suricata is able to deliver substantially higher performance than a corresponding single instance of Snort. This paper describes in detail both the testing framework capabilities, tests performed and results found.
© (2013) COPYRIGHT Society of Photo-Optical Instrumentation Engineers (SPIE). Downloading of the abstract is permitted for personal use only.
Joshua S. White, Joshua S. White, Thomas Fitzsimmons, Thomas Fitzsimmons, Jeanna N. Matthews, Jeanna N. Matthews, "Quantitative analysis of intrusion detection systems: Snort and Suricata", Proc. SPIE 8757, Cyber Sensing 2013, 875704 (28 May 2013); doi: 10.1117/12.2015616; https://doi.org/10.1117/12.2015616

Back to Top