Survey of intrusion detection technology

Recently,intrusion detection has become a hot topic in network security.There aretwo basic analysis approaches in intrusion detectionthat are anomaly detectionand misuse detection.The formerincludesstatistical analysis,predictive pattern generation,neural network,genetic algorithm,sequence matching and learning,immunologic system,specification-based,data mining,integrity checker and Bayesian technology;the latterincludesexpert system,model-based,state transition analysis,Petri net,protocolanalysis and decision tree.There are also other analysis techniques such as alerts correlation analysis,visualization and trap.Intrusion detection system(IDS)has twokinds of architectures that are centralized architecture and distributed architecture.The main prospects ofintrusion detectionfor future improvement are high-powered detection,distributed architecture,evaluation,standardization and security technology fusion.