HIDSUR: a hybrid intrusion detection system based on real-time user recognition

Author

Seleznyov, Alexandr ; Puuronen, Seppo

Author_Institution

Dept. of Comput. Sci. & Inf. Syst., Jyvaskyla Univ., Finland

fYear

2000

fDate

2000

Firstpage

41

Lastpage

45

Abstract

The fast expansion of inexpensive computer networks has increased the problem of unauthorized access and tampering with data. As a response to increased threats many intrusion detection systems (IDSs) have been developed to serve as a last line of defense in the overall protection scheme of a computer system. We present an architecture of a hybrid intrusion detection system based on real-time user recognition. The user recognition that deploys online learning exposes different kinds of misuse attempts that become apparent as anomalous activities in the system. We present the architecture of our system that combines anomaly and misuse intrusion detection in a hybrid system that tries to take advantage of the best practices of both misuse and anomaly detection approaches

Keywords

computer network management; security of data; HIDSUR; anomaly detection; computer system protection; hybrid intrusion detection system; online learning; real-time user recognition; unauthorized access; Best practices; Computer architecture; Computer networks; Computer science; Computerized monitoring; Electronic mail; Information systems; Intrusion detection; Protection; Real time systems;

fLanguage

English

Publisher

ieee

Conference_Titel

Database and Expert Systems Applications, 2000. Proceedings. 11th International Workshop on

Conference_Location

London

ISSN

1529-4188

Print_ISBN

0-7695-0680-1

Type

conf

DOI

10.1109/DEXA.2000.875002

Filename

875002