ANÁLISE DE UMA IMPLEMENTAÇÃO OPEN SOURCE PARA GERENCIAMENTO E SEGURANÇA DE REDE

• DOI: 10.22533/at.ed.6832020033

• Palavras-chave: Simulação por Eventos Discretos. OSSIM. Open Source. Desempenho.

• Keywords: Discrete-Event Simulation. OSSIM. Open Source. Performance.

• Abstract:

  This article is the result of a master's dissertation has aimed to model OSSIM through a computational model, enabling its evaluation and performance improvements, mainly the study and evaluation of its performance and critical points. To do that so, this dissertation reviewed the literature concerning the matter, including a brief contextualization on Network Security and Intrusion Detection, Rationale on OSSIM, Discrete-Event Simulation and Queueing Theory, as well as the analysis of existing works. The research methodology follows the steps pointed out by Freitas Filho (2008), with problem formulation and analysis; problem planning; formulation of the conceptual model, collection of macro information and data; model translation; verification and validation; experimental design; experimentation; interpretation and statistical analysis of data collected. Were proposed two ways to perform the validation, the first using an analytical model known in the simulation model was validated with respect to the analytical model with 95% confidence interval and the second based on data collected by the references in the information generated showed similarity and the information generated are reliable. It has been concluded that delays in IDS-based agents may compromise network security within organizations due to the large number of virtual attacks planned by cybercriminals around the world.

• Número de páginas: 15