Component-based Software Design and Implementation for Network Security System

A computer network intrusion detection and prevention system consists of collectingnetwork traffic data, discovering user behavior patterns as intrusion detectionrules, and applying these rules to prevent malicious and misuse. Manycommercial off-the-shelf (COTS) products have been developed to performeach of these tasks. In this paper, the component-based software engineeringapproach is exploited to integrate these COTS products as componentsinto a computerized system to automatically detect intrusion rules from networktraffic data and setup IPTables to prevent future potential attacks. The component-based software architecture of this kind of system is designed, COTScomponents are analyzed and selected, adaptor components to connect COTSproducts are developed, the system implementation is illustrated, and the preliminarysystem experiment is presented.