Journal of Information Security

Volume 3, Issue 2 (April 2012)

ISSN Print: 2153-1234   ISSN Online: 2153-1242

Google-based Impact Factor: 3.79  Citations  

Experimental Evaluation of Cisco ASA-5510 Intrusion Prevention System against Denial of Service Attacks

HTML  XML Download Download as PDF (Size: 1600KB)  PP. 122-137  
DOI: 10.4236/jis.2012.32015    8,494 Downloads   15,271 Views  Citations

ABSTRACT

Cyber attacks are continuing to hamper working of Internet services despite increase in the use of network security systems such as, firewalls and Intrusion protection systems (IPS). Recent Denial of Service (DoS) attack on Independence Day weekend, on July 4th, 2009 launched to debilitate the US and South Korean governments’ websites is indicative of the fact that the security systems may not have been adequately deployed to counteract such attacks. IPS is a vital security device which is commonly used as a front line defense mechanism to defend against such DoS attacks. Before deploying a firewall or an IPS device for network protection, in many deployments, the performance of firewalls is seldom evaluated for their effectiveness. Many times, these IPS’s can become bottleneck to the network performance and they may not be effective in stopping DoS attacks. In this paper, we intend to drive the point that deploying IPS may not always be effective in stopping harmful effects of DoS attacks. It is important to evaluate the capability of IPS before they are deployed to protect a network or a server against DoS attacks. In this paper, we evaluate performance of a commercial grade IPS Cisco ASA-5510 IPS to measure its effectiveness in stopping a DoS attacks namely TCP-SYN, UDP Flood, Ping Flood and ICMP Land Attacks. This IPS comes with features to counteract and provide security against these attacks. Performance of the IPS is measured under these attacks protection and compared with its performance when these protection features were not available (i.e. disabled). It was found that the IPS was unable to provide satisfactory protection despite the availability of the protection features against these flooding attacks. It is important for the network managers to measure the actual capabilities of an IPS system before its deployment to protect critical information infrastructure.

Share and Cite:

S. Kumar and R. Sekhar Reddy Gade, "Experimental Evaluation of Cisco ASA-5510 Intrusion Prevention System against Denial of Service Attacks," Journal of Information Security, Vol. 3 No. 2, 2012, pp. 122-137. doi: 10.4236/jis.2012.32015.

Cited by

[1] Exploring a Cyber Threat Intelligence (CTI) Approach in the Thwarting of Adversary Attacks: An Exploratory Case Study
2022
[2] Cyber Dogfighting: A Case Study Evaluation of the Dynamic Decision-Making Used by Hackers in a Turbulent Environment of Cyberspace at a Regional Hacking …
2018
[3] Security Evaluation of Virtualized Computing Platforms
ProQuest Dissertations Publishing, 2017
[4] The perception of cyber threats and its associative relationship to the protection motivation theory and generational age groups: A quantitative study
ProQuest Dissertations Publishing, 2015
[5] Quantum tunneling resonant electron transfer process in Lorentzian plasmas
Physics of Plasmas (1994-present), 2014
[6] Inner-shell ionization cross section of gold by elec-tron and positron impact
2014
[7] Cybercrimes Technologies and Approaches
2014

Journals Menu
Follow SCIRP
Contact us
+1 323-425-8868
customer@scirp.org
WhatsApp +86 18163351462(WhatsApp)
Click here to send a message to me 1655362766
Paper Publishing WeChat

Copyright © 2024 by authors and Scientific Research Publishing Inc.

Creative Commons License

This work and the related PDF file are licensed under a Creative Commons Attribution 4.0 International License.