Host-based intrusion detection system

A host-based intrusion detection system (HIDS) is an intrusion detection system that is capable of monitoring and analyzing the internals of a computing system as well as the network packets on its network interfaces, similar to the way a network-based intrusion detection system (NIDS) operates.[1] HIDS focuses on more granular and internal attacks through focusing monitoring host activities instead of overall network traffic.[2] HIDS was the first type of intrusion detection software to have been designed, with the original target system being the mainframe computer where outside interaction was infrequent.[3]

One major issue with using HIDS is that it needs to be installed on each and every computer that needs protection from intrusions. This can lead to a slowdown in device performance and intrusion detection systems.[4]

  1. ^ Cite error: The named reference newman2009 was invoked but never defined (see the help page).
  2. ^ Liu, Ming; Xue, Zhi; Xu, Xianghua; Zhong, Changmin; Chen, Jinjun (19 November 2018). "Host-Based Intrusion Detection System with System Calls: Review and Future Trends". ACM Computing Surveys. 51 (5): 98:1–98:36. doi:10.1145/3214304. ISSN 0360-0300.
  3. ^ Cite error: The named reference cn31_8_805 was invoked but never defined (see the help page).
  4. ^ Ahmad, Zeeshan; Shahid Khan, Adnan; Wai Shiang, Cheah; Abdullah, Johari; Ahmad, Farhan (January 2021). "Network intrusion detection system: A systematic study of machine learning and deep learning approaches". Transactions on Emerging Telecommunications Technologies. 32 (1). doi:10.1002/ett.4150. ISSN 2161-3915.

From Wikipedia, the free encyclopedia · View on Wikipedia

Developed by Nelliwinne