Intrusion Detection Systems: Technologies, Weaknesses and Trends
Independent thesis Basic level (professional degree)Student thesisAlternative title
Intrångsdetekteringssystem : Teknologier, Svagheter och Trender (Swedish)
Traditionally, firewalls and access control have been the most important components used in order to secure servers, hosts and computer networks. Today, intrusion detection systems (IDSs) are gaining attention and the usage of these systems is increasing. This thesis covers commercial IDSs and the future direction of these systems. A model and taxonomy for IDSs and the technologies behind intrusion detection is presented.
Today, many problems exist that cripple the usage of intrusion detection systems. The decreasing confidence in the alerts generated by IDSs is directly related to serious problems like false positives. By studying IDS technologies and analyzing interviews conducted with security departments at Swedish banks, this thesis identifies the major problems within IDSs today. The identified problems, together with recent IDS research reports published at the RAID 2002 symposium, are used to recommend the future direction of commercial intrusion detection systems.
Place, publisher, year, edition, pages
Institutionen för systemteknik , 2003. , 57 p.
Informationsteknik, computer security, IDS, intrusion detection, taxonomy, weaknesses
Computer and Information Science
IdentifiersURN: urn:nbn:se:liu:diva-1614OAI: oai:DiVA.org:liu-1614DiVA: diva2:18938