Intelligent Information Technology and Security Informatics, International Symposium on (2010)
Apr. 2, 2010 to Apr. 4, 2010
Intrusion detection is the process of identifying and responding to suspicious activities targeted at computing and communication resources, and it has become the mainstream of information assurance as the dramatic increase in the number of attacks. Intrusion detection system (IDS) monitors and collects data from a target system that should be protected, processes and correlates the gathered information, and initiates responses when evidence of an intrusion is detected. In this paper, we designed and implemented a host-based intrusion detection system, which combines two detection technologies, one is log file analysis technology and the other is BP neural network technology. Log file analysis is an approach of misuse detection, and BP neural network is an approach of anomaly detection. By combination of these two kinds of detection technologies, the HIDS that we have implemented can effectively improve the efficiency and accuracy of intrusion detection.
intrusion detection, intrusion detection system, HIDS, Log analysis, BP neural network, OSSEC
Y. Zhang, Y. Ou and Y. Lin, "The Design and Implementation of Host-Based Intrusion Detection System," Intelligent Information Technology and Security Informatics, International Symposium on(IITSI), Jinggangshan, China, 2010, pp. 595-598.