Intrusion Detection System
An Intrusion Detection System (IDS) is a security tool that monitors network traffic and system activity to identify unauthorized access attempts, malware infections, and policy violations. Introduced by Dorothy Denning in 1987, IDS employs two main detection paradigms: signature-based (matching known attack patterns) and anomaly-based (identifying deviations from normal behavior).
Rekod sumber
Petikan disalin secara verbatim daripada rekod sumber kaedah. Tiada pengesahan peringkat tuntutan disimpulkan daripadanya.
- Denning, D. E. (1987). An intrusion-detection model. IEEE Transactions on Software Engineering, 13(2), 222–232. · DOI 10.1109/TSE.1987.232894
- Lippmann, R. P., Kunkel, J. W., Base, D. J., Haines, J. W., Fried, D. J., Webster, S. E., & Wyschogrod, D. B. (2000). 1999 DARPA intrusion detection evaluation: Datasets. Technical Report, MIT Lincoln Laboratory. · URL
- Garcia-Teodoro, P., Diaz-Verdejo, J., Maciá-Fernández, G., & García-Alonso, J. (2009). Anomaly-based network intrusion detection: Techniques, systems and challenges. Computers & Security, 28(1–2), 18–28. · DOI 10.1016/j.cose.2008.08.003
Tuntutan yang dikurasi
Tuntutan disimpan dalam lejar bukti, setiap satu dengan penilaiannya sendiri.
Pandangan ini tidak mencipta penilaian tuntutan apabila lejar tiada.
Kaedah berkaitan
Dijana daripada graf kaedah dan ditunjukkan sebagai perhubungan yang dicadangkan mesin — tiada tuntutan bukti disimpulkan.