Faculty Publications, Working Papers

RMU Research #: 10180
Title: A Model for Virtual Laboratory Intrusion Detection Experience
Author/PI: Valerie J Powell;   Randall S Johnson;   Turchek, John C
Date(s): 09/22/0006 - 09/23/0006
Category: Computer Information Systems
Type: Conference Paper
Description: This paper describes how to design and implement an intrusion detection module that may be implemented in various courses taught in an information system curriculum and covers the industry-standard Snort Open Source intrusion detection system (IDS). This paper proposes that virtualization offers three significant instructional advantages in delivering a rich IDS experience: (1) server independence giving each student control of an IDS configuration, (2) a unique IP address on the “virtual” network for each server so that students are able to work in teams, including in distance learning situations, and (3) demonstration of centralized logging as typically deployed in production networks by configuring each virtual machine to send log messages to the instructor’s virtual machine. Students then can generate, observe, log, and analyze various types of network traffic between their virtual servers in a safe, ethical manner.
Related Site: http://infosec.kennesaw.edu/InfoSecCD2006/index.shtml
Abstract: Click to Download Abstract   Download Abstract
Document: Available to Public   Download Document: Available to Public