DOI: 10.18413/2518-1092-2024-9-2-0-5

ANALYSIS OF OPEN-SOURCE INTRUSION DETECTION AND PREVENTION SYSTEMS FOR INTEGRATION WITH RUSSIAN OPERATING SYSTEMS

Victoria Sergeevna Nadeikina
Maria Aleksandrovna Maslova

The article reviewed IDS/IPS such as Snort, Suricata, Fail2Ban and OSSEC, which have open-source code. Their mechanisms for ensuring network security, including architecture, functions, tools and implemented tasks, are analyzed. The possibility of integrating these systems with Russian operating systems is considered. In conclusion, it is emphasized that IDS/IPS are just one of the many layers of protection that must be implemented to ensure effective security. Only an integrated approach to security can be the key to protecting against modern cyber threats.

Keywords: intrusion detection systems, intrusion prevention systems, IDS, IPS, Russian operating systems, OS, software products, security assessment, open-source.

Number of views: 193 (view statistics)

Количество скачиваний: 671

Full text (PDF)To articles list

Information for citation:

Nadeykina V.S., Maslova M.A. Analysis of open-source intrusion detection and prevention systems for integration with russian operating systems // Research result. Information technologies. – Т.9, №2, 2024. – P. 41-48. DOI: 10.18413/2518-1092-2024-9-2-0-5

User comments
Reference lists

While nobody left any comments to this publication.
You can be first.

Current cyber threats: The second quarter of 2023. URL: https://www.ptsecurity.com/ru-ru/research/analytics/cybersecurity-threatscape-2023-q2/
Ashoor A.S., Gore S. Intrusion detection system (IDS) & intrusion prevention system (IPS): Case study // International Journal of Scientific & Engineering Research. – 2012. – Т. 2. URL: https://citeseerx.ist.psu.edu/document?repid=rep1&type=pdf&doi=ddcb13f5dc671786b6fef5aa1fc4cc0285c4c79d
Snort – Network Instruction Detection. URL: https://www.snort.org/
Hoover C. Comparative study of snort 3 and suricata intrusion detection systems. – 2022. URL: https://scholarworks.uark.edu/csceuht/105/
Home – Suricata. URL: https://suricata.io/
Ford M. et al. The process of transferring Fail2ban data to an adaptive corporate intrusion detection and prevention system // SoutheastCon 2016. – IEEE, 2016. – pp. 1-4. URL: https://iocscience.org/ejournal/index.php/mantik/article/view/673/434
How to secure SSH using Fail2Ban. A beginner's guide. URL: https://itshaman.ru/articles/3016/kak-zashchitit-ssh-s-pomoshchyu-fail2ban-rukovodstvo-dlya-nachinayushchikh
Security of network connections. URL: https://maximalisimus.github.io/Articles/The-security-of-network-connections.html#part5.0
OSSEC – World`s Most Widely Used Host Intrusion Detected System – HIDS. URL: https://www.ossec.net/
Teixeira D. et al. OSSEC IDS extension to improve log analysis and override false positive or negative detections //Journal of Sensor and Actuator Networks. – 2019. – Т. 8. – №. 3. – С. 46. URL: https://www.mdpi.com/2224-2708/8/3/46.
Pilkevich P.V., Maslova M.A. The influence of relational database indexes on search performance // Threats and risks in the South of Russia in the context of the geopolitical crisis. Achievements and prospects for scientific research of young scientists in the South of Russia: Materials of scientific events: All-Russian conference with international participation; XIX Annual Youth Scientific Conference, Rostov-on-Don, March 15 – 29, 2023. – Rostov-on-Don: Federal State Budgetary Institution of Science "Federal Research Center Southern Scientific Center of the Russian Academy of Sciences", 2023. – P. 310.
Implementation of ESG principles in the development strategy of the Russian economy /
N.G. Vovchenko, N.G. Kuznetsov, E.N. Makarenko [etc.]. – Rostov-on-Don: Rostov State Economic University “RINH”, 2022. – 508 p.

All journals

Send article

Research result. Information technologies is included in the scientific database of the RINTs (license agreement No. 765-12/2014 dated 08.12.2014).

Журнал включен в перечень рецензируемых научных изданий, рекомендуемых ВАК

The journal is indexed by the following scientific databases and platforms

Research Result. Research result. Information technologies (ISSN 2518-1092)

The journal materials and website are licensed under Creative Commons «Attribution» 4.0 International.

The Founder: Federal State Autonomous Educational Institution of Higher Education "Belgorod National Research University"The Founder’s address: 85 Pobedy Street, Belgorod, the Belgorod region, 308015, Russia

The Publisher: Federal State Autonomous Educational Institution of HigherEducation "Belgorod National Research University" The Founder’s address:85 Pobedy Street, Belgorod, the Belgorod region, 308015, Russia

Editors Office: chief editor Chernomorets Andrey Alekseevich, e-mail: RR_IT@bsu.edu.ru, phone: +7 (4722) 30-13-92.

Registered by the Federal Service for Supervision of Communications, Information Technology and Mass Media (Roskomnadzor)

Certificate

Info letter (Russian)

Have questions?
You can write to us:

✉ Content manager

✉ Site administration

✉ Executive Secretary