Implementation of Intrusion Detection System With Suricata on Ubuntu 22.04 LTS

Wahyat Wahyat; Parlindungan Kudadiri

Authors

Wahyat Wahyat Politeknik Negeri Bengkalis
Parlindungan Kudadiri Politeknik Negeri Bengkalis

Keywords:

intrusion detection system, suricata, linux ubuntu

Abstract

This study seeks to put into action and assess the effectiveness of a Suricata based Intrusion Detection System (IDS), on a Linux Ubuntu 22 04 operating system setup. Suricata was selected as the IDS for its features and strong performance, in identifying types of cyber threats. The execution procedure involves setting up Suricata through installation configuring it and conducting tests in a controlled setting. The efficiency assessment entails studying the detection accuracy alarm rate and response time of Suricata when confronted with attack scenarios. The findings, from the research are anticipated to enhance the protection of information systems that operate using Linux as their base platform.

References

[1] Anis, M., Hilmi, A., & Khujaemah, E. (2022). Network Security Monitoring With Intrusion Detection System. Jurnal Teknik Informatika (JUTIF), 3(2), 249–253. https://doi.org/10.20884/1.jutif.2022.3.2.117

[2] Fadhilah, D., & Marzuki, M. I. (2020). Performance Analysis of IDS Snort and IDS Suricata with Many-Core Processor in Virtual Machines against Dos/DDoS Attacks. 2020 2nd International Conference on Broadband Communications, Wireless Sensors and Powering, BCWSP 2020, March 2015, 157–162. https://doi.org/10.1109/BCWSP50066.2020.9249449

[3] Nam, K., & Kim, K. (2018). A Study on SDN security enhancement using open source IDS/IPS Suricata. 9th International Conference on Information and Communication Technology Convergence: ICT Convergence Powered by Smart Intelligence, ICTC 2018, 1124–1126. https://doi.org/10.1109/ICTC.2018.8539455

[4] Santoso, D., Noertjahyana, A., & Andjarwirawan, J. (2022). Implementasi dan Analisa Snort dan Suricata Sebagai IDS dan IPS Untuk Mencegah Serangan DOS dan DDOS. Jurnal Infra, 10(1), 1–6.

[5] Syamsuddin, I., & Barukab, O. M. (2022). SUKRY : Suricata IDS with Enhanced kNN Algorithm on. Electronics, 11(737).