Survey of Anomaly Intrusion Detection Research

Intrusion detection is an extremely important aspect of network security. The Anomaly intrusion detection research is one of highlighted topics of intrusion detection. The relationship between intrusion detection and network security model is reviewed. The concept of intrusion detection and the abstract model of intrusion detection system are introduced. Three developing technologies including network data based anomaly detection, system call based anomaly detection, and system call arguments based anomaly detection are discussed in detail. Most important research methods of those three technologies are summarized. Finally, the future development of this research domain is presented.