Faculty Publications, Working Papers
RMU Research #: | 10180 |
Title: | A Model for Virtual Laboratory Intrusion Detection Experience |
Author/PI: | Valerie J Powell; Randall S Johnson; Turchek, John C |
Date(s): | 09/22/0006 - 09/23/0006 |
Category: | Computer Information Systems |
Type: | Conference Paper |
Description: | This paper describes how to design and implement an intrusion detection module that may be implemented in various courses taught in an information system curriculum and covers the industry-standard Snort Open Source intrusion detection system (IDS). This paper proposes that virtualization offers three significant instructional advantages in delivering a rich IDS experience: (1) server independence giving each student control of an IDS configuration, (2) a unique IP address on the “virtual” network for each server so that students are able to work in teams, including in distance learning situations, and (3) demonstration of centralized logging as typically deployed in production networks by configuring each virtual machine to send log messages to the instructor’s virtual machine. Students then can generate, observe, log, and analyze various types of network traffic between their virtual servers in a safe, ethical manner. |
Related Site: | http://infosec.kennesaw.edu/InfoSecCD2006/index.shtml |
Abstract: | Download Abstract |
Document: | Download Document: Available to Public |