2
2006.
Network packet payload analysis for intrusion detection
This paper explores possibility of detecting intrusions into computer networks using network packet payload analysis. Quick overview of current IDS state of the art is given. Issues with IDS are explained. Integrated approach to IDS building is suggested. Anomaly detection process improvements are recomended. Current prevailing methods for network intrusion detection based on packet meta data, headers, are compared with method proposed in paper. Reasoning behind packed payload analysis for intrusion detection is presented. Modeling of HTTP normal and anomalous payload using artificial neural networks is suggested as best approach. Future work is defined.