Difference between statistical anomaly detection and rule based intrusion detection
Answers
Answered by
0
Intrusion Detection System is a Software App that checks and controls networks for malicious activities/Violations of policy.
Malicious activity/Violation is normally told to an administrator/collected centrally using a Security Information and Event Management (SIEM) system.
SIEM System joins results from many sources and uses alarm filtering methods to differentiate threat activity from false alarms.
Similar questions