An improved two‐tiered strategy to intrusion detection
Abstract
Purpose
A work that combined strategies in designing anomaly‐based instruction detection system (IDS) was described in CSIDS. This new work seeks to improve on CSIDS.
Design/methodology/approach
The shortcomings of CSIDS were first identified and critically analysed. An improved approach for combining data mining and expert system is then presented and implemented.
Findings
The result of the evaluation of the new design produced a better result in terms of the detection efficiency and false alarm rate.
Research limitations/implications
It might be necessary to use data from diverse environments to test the design. However, it was effectively shown that an IDS that combines strategies has been designed.
Practical implications
This work discusses the technical issues of IDS and will motivate researchers in IDS. It has also shown how strategies could be combined for effective intrusion detection.
Originality/value
This paper resulted from the existing problems in IDS and presents practical information in intrusion detection. It is definitely a tool needed by researchers in IDS.
Keywords
Citation
Sodiya, A.S. and Longe, H.O.D. (2005), "An improved two‐tiered strategy to intrusion detection", Information Management & Computer Security, Vol. 13 No. 3, pp. 235-243. https://doi.org/10.1108/09685220510602040
Publisher
:Emerald Group Publishing Limited
Copyright © 2005, Emerald Group Publishing Limited