Citation
Hall, John M.,
Comparing an Immunological and a Rule-Based Intrusion Detection Method, CSDS Technical Report, 2002.
Abstract
This paper compares an immunological based detection style such as the one used by ISNIDS to a simple rule-based detection style. Both Detection components were built into a common framework. We discuss our designs in considerable detail. Both systems were fed normal and attack data. Our results show that both methods have merit. We conclude with a discussion of the theoretical effectiveness of both styles.
Download
(
Full Text in PDF)
BibTex Entry
@techreport{Hall2002:Comparison,
author = "John M. Hall",
title = "Comparing an Immunological and a Rule-Based Intrusion Detection Method",
institution = "University of Idaho",
year = "2002",
state = "ID",
number = "CSDS-DF-TR-03-12",
url = "http://www.johnmhall.net/research/immunology/TechReports/rule.html" }
