Title :
HIDSUR: a hybrid intrusion detection system based on real-time user recognition
Author :
Seleznyov, Alexandr ; Puuronen, Seppo
Author_Institution :
Dept. of Comput. Sci. & Inf. Syst., Jyvaskyla Univ., Finland
Abstract :
The fast expansion of inexpensive computer networks has increased the problem of unauthorized access and tampering with data. As a response to increased threats many intrusion detection systems (IDSs) have been developed to serve as a last line of defense in the overall protection scheme of a computer system. We present an architecture of a hybrid intrusion detection system based on real-time user recognition. The user recognition that deploys online learning exposes different kinds of misuse attempts that become apparent as anomalous activities in the system. We present the architecture of our system that combines anomaly and misuse intrusion detection in a hybrid system that tries to take advantage of the best practices of both misuse and anomaly detection approaches
Keywords :
computer network management; security of data; HIDSUR; anomaly detection; computer system protection; hybrid intrusion detection system; online learning; real-time user recognition; unauthorized access; Best practices; Computer architecture; Computer networks; Computer science; Computerized monitoring; Electronic mail; Information systems; Intrusion detection; Protection; Real time systems;
Conference_Titel :
Database and Expert Systems Applications, 2000. Proceedings. 11th International Workshop on
Conference_Location :
London
Print_ISBN :
0-7695-0680-1
DOI :
10.1109/DEXA.2000.875002
