An Architecture of Hybrid Intrusion Detection System
Abstract
Intrusion Detection System (IDS) is renowned and widely-deployed security tool to detect attacks and malicious activities in information system. It is an essential element of any contemporary information system. There are mainly two techniques for intrusion detection: i) misuse (signature-based) detection and ii) anomaly (behavior-based) detection technique. Both the techniques have their advantages and disadvantages. This paper presents research from an ongoing study on the use of features of both the intrusion detection techniques to design a novel and efficient hybrid IDS. An architecture and implementation details of our hybrid IDS are presented. Furthermore, unique characteristics of our hybrid IDS are described. This paper concludes with future research directions and challenges in IDS.
Full Text:
PDF
Total views : 113 times
Refbacks
- There are currently no refbacks.
This work is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License.