An Intrusion Prevention System using Wrapper

Abstract

Over the past several years, the Internet environment has become more complex and untrusted. There are always crackers and business competitors trying to penetrate security system and then steal confidential information. Some of them would also spread malicious software or files attack our computer system, making our system paralyzed, unable to provide service. Even more, the attacker may gain full access to our system without any trace. Based on the system call interception technique, we developed a real-time intrusion prevention system, IPSW (Intrusion Prevention System using Wrapper). This system intercepts every system call invoked by applications and tries to match any of the penetration scenarios. Once there is any evidence showing some penetration being undertaken, the system can terminate the penetration process before it gets injured. This wrapper system can also wrap Commercial Off-The-Shelf (COTS) software components to provide robustness and security.