IDS - DECISION SUPPORT SYSTEM

trantichphuoc_at_yahoo.com
Date: 08/12/05

Next message: Sven Müller: "Snortcenter, Prelude-IDS"

Previous message: Nakul Aggarwal: "Re: A possible HIPS? Was: Looking for HIDS-only products for XP/2000Pro"
Next in thread: David J. Bianco: "Re: IDS - DECISION SUPPORT SYSTEM"
Reply: David J. Bianco: "Re: IDS - DECISION SUPPORT SYSTEM"
Maybe reply: Augusto Paes de Barros: "Re: IDS - DECISION SUPPORT SYSTEM"
Reply: Avi C: "Re: IDS - DECISION SUPPORT SYSTEM"
Reply: Sanjay Rawat: "Re: [BULK] IDS - DECISION SUPPORT SYSTEM"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: 12 Aug 2005 05:18:36 -0000
To: focus-ids@securityfocus.com

('binary' encoding is not supported, stored as-is) Hi There

I am doing a project of applying data mining techniques to Intrusion Detection systems.

I am also interested in DECISION SUPPORT SYSTEM (Note that this is decision SUPPORT system, not decision MAKING. So it does not make decision but SUPPORT the decision making process.). So I decide to have DECISION SUPPORT SYSTEM as a section of my project.

The problem is that I dont know how to LINK Intrusion Detection to DECISION SUPPORT SYSTEM.

I thought: IDS can detect possible THREATS and this helps Network Admin to make DECISION about the security level, or DO corrective ACTIONS.

Can you give me some thoughts of HOW TO LINK/RELATE IDS to DECISION SUPPORT SYSTEM? In the other words, how IDS can be considered as a DECISION SUPPORT SYSTEM and are there any products relating to this topic in real world?

Thanks

Have a nice day

Patrick Tran

------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it
with real-world attacks from CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
to learn more.
------------------------------------------------------------------------

Next message: Sven Müller: "Snortcenter, Prelude-IDS"

Previous message: Nakul Aggarwal: "Re: A possible HIPS? Was: Looking for HIDS-only products for XP/2000Pro"
Next in thread: David J. Bianco: "Re: IDS - DECISION SUPPORT SYSTEM"
Reply: David J. Bianco: "Re: IDS - DECISION SUPPORT SYSTEM"
Maybe reply: Augusto Paes de Barros: "Re: IDS - DECISION SUPPORT SYSTEM"
Reply: Avi C: "Re: IDS - DECISION SUPPORT SYSTEM"
Reply: Sanjay Rawat: "Re: [BULK] IDS - DECISION SUPPORT SYSTEM"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: [BULK] IDS - DECISION SUPPORT SYSTEM
... IDS, provided you can identify the true sources of data wherein attacks ... >I am doing a project of applying data mining techniques to Intrusion ... >decision SUPPORT system, not decision MAKING. ...
(Focus-IDS)
Re: IDS - DECISION SUPPORT SYSTEM
... Try to search for expert systems that are used for correlating intrusion ... IDS - DECISION SUPPORT SYSTEM ...
(Focus-IDS)
Re: IDS - DECISION SUPPORT SYSTEM
... My suggestion is to use counters for several types of entities. ... Then you use thresholds based on the ... > The problem is that I dont know how to LINK Intrusion Detection to DECISION SUPPORT SYSTEM. ... IDS can detect possible THREATS and this helps Network Admin to make DECISION about the security level, ...
(Focus-IDS)
Re: how can I find researches ...
... >can I finde open problems in IDs or researches on it?is there any special ... Agents which will help you further. ... An Immunological Approach to Distributed Network Intrusion Detection ... Distributed Intrusion Detection Systems: An Introduction and Review ...
(Focus-IDS)
RE: IDS vs. IPS deployment feedback
... Totally agree with you Intrusion Detection is not dead. ... IPS is a great benefit, but if you have a network that changes then it ... you still have to run it in an IDS mode to ... Much of the rhetoric and push for deploying IPS devices that are ...
(Focus-IDS)