“Hybrid Intrusion Detection System and Its Architecture”

Published in Journal

International Journal of Information Technology and Management [IJITM] (Vol:4/ Issue: 1) DOI: 10.29070/IJITM
Authors: Vikas Verma,
Subjects: IT & Management

Year: Feb, 2013
Volume: 4 / Issue: 1
Pages: 0 - 0 (0)
Publisher: Ignited Minds Journals
Source:
E-ISSN: 2249-4510
DOI:
Published URL: http://ipublisher.in/p/3507
Published On: Feb, 2013

Article Details

“Hybrid Intrusion Detection System and Its Architecture” |

Vikas Verma, in International Journal of Information Technology and Management | IT & Management

Download PDF

View HTML

ABSTRACT:

Thehybrid IDS is obtained by combining packet header anomaly detection (PHAD) andnetwork traffic anomaly detection (NETAD) which are anomaly-based IDSs with themisuse-based IDS Snort which is an open-source project. Intrusions detectionsystems (IDSs) are systems that try to detect attacks as they occur or afterthe attacks took place. IDSs collect network traffic information from somepoint on the network or computer system and then use this information to securethe network. Intrusion detection systems can be misuse-detection or anomalydetection based. Misuse-detection based IDSs can only detect known attackswhereas anomaly detection based IDSs can also detect new attacks by usingheuristic methods. In this paper we propose a hybrid IDS by combining the twoapproaches in one system.