Intrusion Detection Systems

2.

Fundamental Concepts and Terminology

2.1.

Core Detection Concepts

2.1.1.

Events and Alerts

2.1.2.

Signatures and Patterns

2.1.3.

Baselines and Normal Behavior

2.1.4.

Anomalies and Deviations

2.2.

Detection Accuracy Metrics

2.2.1.

2.2.2.

2.2.3.

False Positives

2.2.4.

False Negatives

2.2.5.

Sensitivity and Specificity

2.3.

Attack-Related Terminology

2.3.1.

2.3.2.

Exploits and Vulnerabilities

2.3.3.

Payloads and Malware

2.3.4.

Indicators of Compromise

2.4.

System Performance Concepts

2.4.1.

2.4.2.

2.4.3.

Processing Latency

2.4.4.

Resource Utilization

Previous

1. Introduction to Intrusion Detection Systems

Go to top

Next

3. IDS Classification by Deployment Location