Survey and Research Directions on Intrusion Detection in UNIX Environment

Although UNIX is considered a very stable and secure platform, the development of Intrusion Detection Systems is essential as current and future generations of hackers are continuously attempting to undermine its integrity. There are few intrusion detection systems in UNIX for detecting multiple threats in a distributed networking environment. Researchers have applied different statistical models that involve data fusion. The most common and popular approaches include Bayesian theory, Dempster Shafer Evidence Theory, Parametric and Non-Parametric techniques, and Markov Chain. With few exceptions, almost all these detection models cater only for single threat.