The process of monitoring the events occurring in a computer system or network and analyzing them for sign of intrusions is known as intrusion detection systems (IDS).In this paper the architecture of the snort which is an open source Intrusion detection system is explained. It is a rule based system hence the structure of the rule is also explained. But to match with the high speed of network traffic the performance of the SNORT need to be improved hence the various methods has been developed three of them are reviewed here which are Rules Matching Algorithm Based on Dynamic Adjustment, NAPI and LASSP.
Kshirsagar, V.P.; Vishnu, S.S.; and Tidke, S.M.
"Approaches for improving the performance of snort Intrusion Detection Systems,"
International Journal of Computer Science and Informatics: Vol. 2
, Article 7.
Available at: https://www.interscience.in/ijcsi/vol2/iss2/7