Revisiting Anomaly-based Network Intrusion Detection Systems

  title={Revisiting Anomaly-based Network Intrusion Detection Systems},
  author={Damiano Bolzoni},
Intrusion detection systems (IDSs) are well-known and widely-deployed security tools to detect cyber-attacks and malicious activities in computer systems and networks. A signature-based IDS works similar to anti-virus software. It employs a signature database of known attacks, and a successful match with current input raises an alert. A signature-based IDS cannot detect unknown attacks, either because the database is out of date or because no signature is available yet. To overcome this… CONTINUE READING
Highly Cited
This paper has 46 citations. REVIEW CITATIONS

From This Paper

Topics from this paper.
36 Citations
251 References
Similar Papers

Similar Papers

Loading similar papers…