Key points are not available for this paper at this time.
All computer systems are vulnerable to abuse and penetration by both legitimate users who abuse their authority and individuals who are not authorized to use the computer system. Many systems are under development to aid in the detection of these abuses. The capabilities of these 'intrusion detection systems' (IDS) are varied, ranging from tools that provide for the meaningful reduction of audit data to tools that provide in-depth analysis of user and system behavior. The authors have performed a survey of the state-of-the-art in intrusion detection systems. This paper presents a summary of this survey.>
McAuliffe et al. (Wed,) studied this question.