Abstract—In accordance with current technological developments, such as the Internet of Things, Big Data, and 5G Technology that almost all of them are better in terms of infrastructure, faster in terms of bandwidth, and more technological savvy than previous technology. From all of these developments, there are positive and negative impacts. The positive impact certainly gives things that can help our daily lives even to do business. While the negative impact is the most feared thing in almost every country such as theft of intellectual property, financial fraud, damage of service network, etc. And that are all we know of cybercrime.
NIDS (Network Intrusion Detection System) is a software application that can see deeper into the network to prevent suspicious activity such as malicious software or unauthenticated activity. The contribution of this paper is to provide a NIDS system that is more optimal and inexpensive in implementation because it uses Open Source Firewall of cyber-attacks. With additional features such as content and PCRE (Perl Compatible Regular Expressions) that are already known, can provide the optimization to the network security system of a company / campus. Based on the implementation and testing that has done, recommendations of new safe system and policy are provided for small or large corporate in implementing NIDS.
Index Terms—Cybercrime, NIDS, signature-based, content, PCRE.
Gandeva Bayu Satrya and Soo Young Shin are with the Department of IT Convergence Engineering, School of Electronic Engineering, Kumoh National Institute of Technology, Gumi, South Korea (e-mail: gandevabs@kumoh.ac.kr, wdragon@kumoh.ac.kr).
[PDF]
Cite:Gandeva Bayu Satrya and Soo Young Shin, "Optimizing Rule on Open Source Firewall Using Content and PCRE Combination," Journal of Advances in Computer Networks vol. 3, no. 3, pp. 308-314, 2015.
