Making IT simple! 0844 344 1979

Bookmark and Share
Subscribe to our YouTube channel Read Kaleton's Blog Follow Kaleton on Twitter Become a Kaleton fan on Facebook
 

Papers and Articles

Combination of Misuse and Anomaly Network Intrusion Detection Systems

This project was completed in March 2002 during time studying at the University of York's Department of Computer Science. Intrusion Detection Systems detect attackers and respond to them in real time. This paper investigates combining two different approaches to intrusion detection in one system.

Misuse detection consists of defining malicious network traffic and monitoring for it. Anomaly detection consists of defining normal or typical network traffic and then detecting anything else. The PERL source code for a prototype NIDS is included (requires TCPDump).

Download this paper here. (Adobe Reader required. Get it here)

Download the source code here.

View this paper as a normal web page.

Click here to return to Security Papers main page.

Get free IT advice and offers for your care home business. Subscribe to the Kaleton Newsletter.

Kaleton is a member of the Leeds Chamber of Commerce