A Comparative Analysis of Current Intrusion Detection Technologies
Author
James Cannady,Jay Harrell
Abstract
Intrusion detection is a significant focus of research in the security of computer
systems and networks. This paper presents an analysis of the progress being made
in the development of effective intrusion detection systems for computer systems and
distributed computer networks. The technologies which are discussed are designed to
detect instances of the access of computer systems by unauthorized individuals and
the misuse of system resources by authorized system users. A review of the foundations
of intrusion detection systems and the methodologies which are the focus of current
development efforts are discussed. The results of an informal survey of security and
network professionals is discussed to offer a real-world view of intrusion detection.
Finally, a discussion of the future technologies and methodologies which promise to
enhance the ablility of computer systems to detect intrusions is provided.
Address
Atlanta, GA 30332-0800
Institution
Georgia Tech Research Institute
Publication Date
0000-00-00
Keywords
Intrusion detection, anomaly detection, misuse detection, computer security
Location
A hard-copy of this is in the Papers Cabinet