International Journal of Computer Applications
Assuring secure and reliable operation of networks has become a priority research area these days because of ever growing dependency on network technology. Intrusion Detection Systems (IDS) are used as the last line of defense. Intrusion detection system identifies patterns of known intrusions (misuse detection) or differentiates anomalous network data from normal data (anomaly detection). In this paper, a novel Intrusion Detection System (IDS) architecture is proposed which includes both anomaly and misuse detection approaches. The hybrid intrusion detection system architecture consists of centralized anomaly detection and distributed signature detection modules.