Describe the differences between the two main classes of intrusions: misuse and anomaly.
What are the characteristics of a good intrusion detection system?
Visit the distributed intrusion detection system called DShield at www.dshield.org.
Which types of attacks are more prevalent at the time of your visit to the site?
Where is the origin of most of the attacks?© BrainMass Inc. brainmass.com October 10, 2019, 12:09 am ad1c9bdddf
A misuse intrusion is an attack on the known vulnerable areas of a system while an anomaly intrusion is an unidentified and anomalous attack to the system. Those two main classes of intrusion are detected differently by an intrusion detection system (IDS). An IDS searches for misuse intrusions by comparing the incoming and outgoing network traffic ...
This posting contains answers to the given questions.