The evolving necessity of the Internet increases the demand on the bandwidth.Therefore, this demand opens the doors for the hackers' community to developnew methods and techniques to gain control over networking systems. Hence, theintrusion detection systems (IDS) are insufficient to prevent/detectunauthorized access the network. Network Intrusion Detection System (NIDS) isone example that still suffers from performance degradation due the increase ofthe link speed in today's networks. In This paper we proposed a novel algorithmto detect the intruders, who's trying to gain access to the network using thepackets header parameters such as; source/destination address,source/destination port, and protocol without the need to inspect each packetcontent looking for signatures/patterns. However, the "Packet Header Matching"algorithm enhances the overall speed of the matching process between theincoming packet headers against the rule set. We ran the proposed algorithm toproof the proposed concept in coping with the traffic arrival speeds and thevarious bandwidth demands. The achieved results were of significant enhancementof the overall performance in terms of detection speed.
展开▼
