混合入侵检测系统的比较

2020 12th International Conference on Information Technology and Electrical Engineering (ICITEE) Pub Date : 2020-10-06 DOI:10.1109/ICITEE49829.2020.9271727

Aditya Nur Cahyo, Anny Kartika Sari, M. Riasetiawan

{"title":"混合入侵检测系统的比较","authors":"Aditya Nur Cahyo, Anny Kartika Sari, M. Riasetiawan","doi":"10.1109/ICITEE49829.2020.9271727","DOIUrl":null,"url":null,"abstract":"IDS have an important role in dispelling and preventing an intrusion or abuse of access rights. In its development, research on IDS is growing. IDS consist of several detection models, one of which is hybrid-based, which in IDS detection combines the signature and anomaly models. This method is considered more effective because it combines the advantages of the speed of signature detection and the ability to analyze new attacks from the anomaly model. However, from existing models and frameworks hybrid-based IDS still needs to be further developed to be implemented in the industry. From a number of existing IDS-based studies, this paper intends to conduct a review with the aim that researchers who wish to develop hybrid-based IDS know which methods and architecture are best to be implemented. This paper reviews hybrid IDS research in the last five years.","PeriodicalId":245013,"journal":{"name":"2020 12th International Conference on Information Technology and Electrical Engineering (ICITEE)","volume":"21 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2020-10-06","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":"{\"title\":\"Comparison of Hybrid Intrusion Detection System\",\"authors\":\"Aditya Nur Cahyo, Anny Kartika Sari, M. Riasetiawan\",\"doi\":\"10.1109/ICITEE49829.2020.9271727\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"IDS have an important role in dispelling and preventing an intrusion or abuse of access rights. In its development, research on IDS is growing. IDS consist of several detection models, one of which is hybrid-based, which in IDS detection combines the signature and anomaly models. This method is considered more effective because it combines the advantages of the speed of signature detection and the ability to analyze new attacks from the anomaly model. However, from existing models and frameworks hybrid-based IDS still needs to be further developed to be implemented in the industry. From a number of existing IDS-based studies, this paper intends to conduct a review with the aim that researchers who wish to develop hybrid-based IDS know which methods and architecture are best to be implemented. This paper reviews hybrid IDS research in the last five years.\",\"PeriodicalId\":245013,\"journal\":{\"name\":\"2020 12th International Conference on Information Technology and Electrical Engineering (ICITEE)\",\"volume\":\"21 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2020-10-06\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"2\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2020 12th International Conference on Information Technology and Electrical Engineering (ICITEE)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICITEE49829.2020.9271727\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2020 12th International Conference on Information Technology and Electrical Engineering (ICITEE)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICITEE49829.2020.9271727","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 2

摘要

IDS在消除和防止入侵或滥用访问权方面具有重要作用。在其发展过程中，对入侵检测系统的研究日益增多。入侵检测包括几种检测模型，其中一种是混合检测模型，它将特征模型和异常模型结合起来进行检测。这种方法被认为是更有效的，因为它结合了签名检测的速度和从异常模型分析新攻击的能力。然而，从现有的模型和框架来看，基于混合的入侵检测系统还需要进一步开发才能在行业中实现。从一些现有的基于入侵检测系统的研究中，本文打算进行一个综述，目的是希望开发基于混合的入侵检测系统的研究人员知道哪些方法和架构是最好的实现。本文对近五年来杂交IDS的研究进行了综述。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Comparison of Hybrid Intrusion Detection System

IDS have an important role in dispelling and preventing an intrusion or abuse of access rights. In its development, research on IDS is growing. IDS consist of several detection models, one of which is hybrid-based, which in IDS detection combines the signature and anomaly models. This method is considered more effective because it combines the advantages of the speed of signature detection and the ability to analyze new attacks from the anomaly model. However, from existing models and frameworks hybrid-based IDS still needs to be further developed to be implemented in the industry. From a number of existing IDS-based studies, this paper intends to conduct a review with the aim that researchers who wish to develop hybrid-based IDS know which methods and architecture are best to be implemented. This paper reviews hybrid IDS research in the last five years.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2020 12th International Conference on Information Technology and Electrical Engineering (ICITEE)

自引率

0.00%

发文量