RUDRAA: an intRUsion Detection & pRevention signAture formulAtion process

Intrusion Detection & Prevention Systems generally aims at detecting / preventing attacks against computer systems and networks or in general against information systems. The basic task of IDPS is to monitor the usage of such systems by detecting / preventing any unwarranted incidents which leads the systems to insecure state. The monitoring is done by checking each packet for its validity against the signatures formulated for identified vulnerabilities. Since, signatures are the heart & soul of an Intrusion Detection and Prevention System (IDPS), we, in this paper, discuss the methodology we adapted in our research effort in the domain of Intrusion Detection and Prevention (IDP) called RUDRAA for formulating, verifying & validating the potential signatures to be used with IDPS. The research objectives of this project are 1) To formulate potential IPS signatures to be used with Intrusion prevention system. 2) To do code improvement and packaging of IDP software solution.