Models and realization of intrusion detection in enterprise corporate information system with intellectual approuch

The methodic of intrusion detection in corporate information systems (CIS) on three levels are done. Models of autonomic and net intrusion detection systems (IDS) including some components are presented. IDS on the base of Snort is worked out and used. During its investigation some tasks were executed: creating the virtual computer net for CIS, analyzing its possible vulnerability; attuning and preparing IDS for CIS with intellectual approach (knowledge in rules view); checking of IDS activity during simulation various attacks and their detection.

intrusion detection system, methodic, model, rule, corporate management system

1. IDS/IPS - Системы обнаружения и предотвращения вторжений [Электронный ресурс]. - Режим доступа : http://www.netconfig.ru/server/ids-ips/. - Дата доступа: 12.11.2017.

2. Вишняков В.А. Информационная безопасность в корпоративных системах, электронной коммерции и облачных вычислениях: методы, модели, программно-аппаратные решения. Минск: Бестпринт, 2016. 276 с.

3. Официальный сайт компании VMware [Электронный ресурс]. - Режим доступа: https://www.vmware.com/ru.html. - Дата доступа: 12.10.2017.

4. McAfee Network Security Manager [Электронный ресурс]. - Режим доступа: http://www.mcafee. com/ru/ products/network-security-manager.aspx. - Дата доступа: 17.09.17.