Intrusion Detection Systems (IDS) Part 2 - Classification; methods; techniques: "Primarily, an IDS is concerned with the detection of hostile actions. This network security tool uses either of two main techniques (described in more detail below). The first one, anomaly detection, explores issues in intrusion detection associated with deviations from normal system or user behavior. The second employs signature detection to discriminate between anomaly or attack patterns (signatures) and known intrusion detection signatures. Both methods have their distinct advantages and disadvantages as well as suitable application areas of intrusion detection."
posted by Jordan @ 6/15/2004 01:45:00 PM
0 Comments:
Post a Comment
<< Home