Data Mining Techniques for (Network) Intrusion Detection Systems
Source: University of California
In Information Security, intrusion detection is the act of detecting actions that attempt to compromise the confidentiality, integrity or availability of a resource. Intrusion detection does not, in general, include prevention of intrusions. This paper mostly focused on data mining techniques that are being used for such purposes. It debates on the advantages and disadvantages of these techniques. Finally the paper presents a new idea on how data mining can aid IDSs.