ANALISIS COMPARISON SNORT DAN SURICATA SEBAGAI NETWORK INTRUSION DETECTION SYSTEM (NIDS)

MUHAMMAD NAUFAL BAHREISY, NIM. 10651038 (2015) ANALISIS COMPARISON SNORT DAN SURICATA SEBAGAI NETWORK INTRUSION DETECTION SYSTEM (NIDS). Skripsi thesis, UIN SUNAN KALIJAGA YOGYAKARTA.

[img]
Preview
Text (ANALISIS COMPARISON SNORT DAN SURICATA SEBAGAI NETWORK INTRUSION DETECTION SYSTEM (NIDS))
10651038_bab-i_iv-atau-v_daftar-pustaka.pdf

Download (2MB) | Preview
[img] Text (ANALISIS COMPARISON SNORT DAN SURICATA SEBAGAI NETWORK INTRUSION DETECTION SYSTEM (NIDS))
10651038_bab-ii_sampai_sebelum-bab-terakhir.pdf
Restricted to Registered users only

Download (2MB)

Abstract

The security of a network is a requirement that is sometimes forgotten. The security of a network in securing the data stream that is connected between the computer and other computers is indispensable, network systems that do not have a security system could potentially lose a data and a held information. One solution to the problems in securing a computer network is to install the Network Intrusion Detection System (NIDS). This study emphasizes the analysis of the accuracy and speed of detection on the server Snort and Suricata against activities attack on the server in the form of Port-Scanning, DDoS and Brute-force, and the network analysis in the form of delay values. This study uses comparative method is experimental. Stages of this research is divided into several steps that the system design and network, at this stage, the design of the system is used as the system under test. The operating system used in this study using Ubuntu linux 12:04 which serve as Snort and Suricata servers and network topology used in this study using by LAN cable as a link between the attacker and the servers. Implementation of the draft, at this stage, the application or implementation of designs that have been created to be tested by comparing the Snort and Suricata. And testing the system using a stress test. Based on the results of the study, showed Snort has a more efficient performance of Suricata, based on the results of testing the network and attack activity. On testing the network (delay) the overall average 5:52 ms on Snort and Suricata result an average value with a value of delay 5.60 ms. On testing portscanning Snort is superior to the total value of the average accuracy in time is 1 alert/s on Snort and 1.27 alerts/s on Suricata, on DDoS attack Snort is superior because it can detect DDoS attack, and brute-force attack Snort is superior to the total value of the average accuracy in time 0.65 alerts/s and 21.69 alerts/s on Suricata in response to the attack. Based on test results concluded Snort is more efficient to be used as Network Intrusion Detection System (NIDS).

Item Type: Thesis (Skripsi)
Additional Information: Dr. H. Imam Riadi, M.Kom
Uncontrolled Keywords: Keywords: Comparison, Network, Security, Snort, Suricata
Subjects: Tehnik Informatika
Divisions: Fakultas Sains dan Teknologi > Teknik Informatika (S1)
Depositing User: Miftahul Ulum [IT Staff]
Date Deposited: 24 Jul 2015 10:12
Last Modified: 24 Jul 2015 10:12
URI: http://digilib.uin-suka.ac.id/id/eprint/16330

Share this knowledge with your friends :

Actions (login required)

View Item View Item
Chat Kak Imum