Mobile Information Systems / 2017 / Article / Tab 5

Research Article

An Enhancement of Optimized Detection Rule of Security Monitoring and Control for Detection of Cyberthreat in Location-Based Mobile System

Table 5

Optimization of Header Rules: IP, Port, Direction.

Command format Selection of detection rule standardization

IPanyAll IP address
numeric IPSpecific IP addresses
numeric IP listMultiple IP address up to 10 including CIDR
CIDRThe length of a specific network address.

Portanyall port numbers
static portFixed Port Number
ranges(;)Port range destination

Direction->Direction from the origin host to the destination host
<>Origin host and destination host bidirectional

Command format Excluded detection rules standardized/excluded reasons

Direction<-Source Host and Destination Host ReverseIt is excluded because it can be made by changing source IP and destination IP and generate load

Article of the Year Award: Outstanding research contributions of 2020, as selected by our Chief Editors. Read the winning articles.