Implementation of Network Security System Using Firewall Technology and Intrusion Detection System (IDS)

Authors

  • Carel Adelard Fakultas Sains & Teknologi (FST), Universitas Papua Madani Jayapura (UPMJ), Papua
  • Osric Penrod Fakultas Sains & Teknologi (FST), Universitas Papua Madani Jayapura (UPMJ), Papua

Keywords:

Network Security, Firewall Technology, Intrusion Detection System (IDS), Cyber Threats, Security Integration

Abstract

In today’s digital age, network security is a critical concern for organizations, with increasing cyber threats such as malware, data breaches, and advanced persistent threats (APTs) jeopardizing sensitive information and business operations. Two core technologies in network defense firewalls and Intrusion Detection Systems (IDS) are widely used to mitigate these risks. However, these technologies are often deployed separately, limiting their ability to provide a comprehensive and adaptive security solution. This research explores the integration of firewall technology and IDS to create a more effective and holistic network security system. The study aims to evaluate the performance of an integrated firewall-IDS system in real-world network environments, focusing on key metrics such as detection accuracy, false positive rates, response time, network performance, and overall security effectiveness. The research also addresses the technical challenges of integrating these two systems, offering insights into the operational benefits and difficulties of their deployment. The results indicate that the integrated system significantly improves security by reducing false positives, enhancing threat detection, and optimizing response times compared to standalone firewalls and IDS.  The research provides practical recommendations for the deployment of integrated firewall and IDS systems and suggests future research directions to further enhance their effectiveness. This study contributes to the field of network security by offering a novel approach to combining firewalls and IDS, providing a comprehensive solution to defend against both external and internal threats, and addressing the operational challenges organizations face when implementing these technologies in tandem.

Downloads

Download data is not yet available.

References

Aldossary, S., & Allen, W. (2016). Data security, privacy, availability and integrity in cloud computing: issues and current solutions. International Journal of Advanced Computer Science and Applications, 7(4).

Alshamrani, A., Myneni, S., Chowdhary, A., & Huang, D. (2019). A survey on advanced persistent threats: Techniques, solutions, challenges, and research opportunities. IEEE Communications Surveys & Tutorials, 21(2), 1851–1877.

Anwar, S., Mohamad Zain, J., Zolkipli, M. F., Inayat, Z., Khan, S., Anthony, B., & Chang, V. (2017). From intrusion detection to an intrusion response system: fundamentals, requirements, and future directions. Algorithms, 10(2), 39.

Bace, R. G., & Mell, P. (2001). Intrusion detection systems.

Boukerche, A., Machado, R. B., Jucá, K. R. L., Sobral, J. B. M., & Notare, M. S. M. A. (2007). An agent based and biological inspired real-time intrusion detection and security model for computer network operations. Computer Communications, 30(13), 2649–2660.

Eliot, N., Kendall, D., & Brockway, M. (2018). A flexible laboratory environment supporting honeypot deployment for teaching real-world cybersecurity skills. IEEE Access, 6, 34884–34895.

Garcia-Teodoro, P., Diaz-Verdejo, J., Maciá-Fernández, G., & Vázquez, E. (2009). Anomaly-based network intrusion detection: Techniques, systems and challenges. Computers & Security, 28(1–2), 18–28.

Ghorbani, A. A., Lu, W., & Tavallaee, M. (2009). Network intrusion detection and prevention: concepts and techniques (Vol. 47). Springer Science & Business Media.

Hedbom, H. (2001). On the Self-Protection of Firewalls and Distributed Intrusion Detection systems. Citeseer.

Iglesias, F., & Zseby, T. (2015). Analysis of network traffic features for anomaly detection. Machine Learning, 101, 59–84.

Kenkre, P. S., Pai, A., & Colaco, L. (2015). Real time intrusion detection and prevention system. Proceedings of the 3rd International Conference on Frontiers of Intelligent Computing: Theory and Applications (FICTA) 2014: Volume 1, 405–411.

Kuipers, D., & Fabro, M. (2006). Control systems cyber security: Defense in depth strategies. Idaho National Lab.(INL), Idaho Falls, ID (United States).

Lamnabhi-Lagarrigue, F., Annaswamy, A., Engell, S., Isaksson, A., Khargonekar, P., Murray, R. M., Nijmeijer, H., Samad, T., Tilbury, D., & Van den Hof, P. (2017). Systems & control for the future of humanity, research agenda: Current and future roles, impact and grand challenges. Annual Reviews in Control, 43, 1–64.

Laurenza, G. (2020). Critical infrastructures security: improving defense against novel malware and Advanced Persistent Threats.

Rash, M. (2007). Linux Firewalls: Attack Detection and Response. No Starch Press.

Rawat, D. B., & Reddy, S. R. (2016). Software defined networking architecture, security and energy efficiency: A survey. IEEE Communications Surveys & Tutorials, 19(1), 325–346.

Serhani, M. A., T. El Kassabi, H., Ismail, H., & Nujum Navaz, A. (2020). ECG monitoring systems: Review, architecture, processes, and key challenges. Sensors, 20(6), 1796.

Shahin, M., Babar, M. A., & Zhu, L. (2017). Continuous integration, delivery and deployment: a systematic review on approaches, tools, challenges and practices. IEEE Access, 5, 3909–3943.

Skopik, F., Settanni, G., & Fiedler, R. (2016). A problem shared is a problem halved: A survey on the dimensions of collective cyber defense through security information sharing. Computers & Security, 60, 154–176.

Sobh, T. S. (2006). Wired and wireless intrusion detection system: Classifications, good characteristics and state-of-the-art. Computer Standards & Interfaces, 28(6), 670–694.

Stewart, J. M. (2013). Network security, firewalls and VPNs. Jones & Bartlett Publishers.

Strand, L. K. (2004). Adaptive distributed firewall using intrusion detection.

Viegas, E. K., Santin, A. O., & Oliveira, L. S. (2017). Toward a reliable anomaly-based intrusion detection in real-world environments. Computer Networks, 127, 200–216.

Yaacoub, J.-P. A., Salman, O., Noura, H. N., Kaaniche, N., Chehab, A., & Malli, M. (2020). Cyber-physical systems security: Limitations, issues and future trends. Microprocessors and Microsystems, 77, 103201.

Downloads

Published

2023-10-30

How to Cite

Adelard, C., & Penrod, O. (2023). Implementation of Network Security System Using Firewall Technology and Intrusion Detection System (IDS). Idea: Future Research, 1(3), 113–121. Retrieved from https://idea.ristek.or.id/index.php/idea/article/view/11

Issue

Vol. 1 No. 3 (2023): Octo: Idea: Future Research

Section

Articles

License

Copyright (c) 2023 Carel Adelard, Osric Penrod

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.