Date Added: Dec 2011
Intrusion detection has become a critical component of network administration due to the vast number of attacks persistently threaten the computers. Traditional intrusion detection systems are limited and do not provide a complete solution for the problem. The people, search for potential malicious activities on network traffics; they sometimes succeed to find true security attacks and anomalies. However, in many cases, they fail to detect malicious behaviours (false negative) or they fire alarms when nothing wrong in the network (false positive).