16.3. Fault and Security Management on High-Speed Networks
16.3.1. Background
In this section, we discuss network-level faults (i.e., anomalies) and intrusion detection, particularly for high-speed networks. It is very important to have integrated fault and intrusion detection because many network faults are often misidentified as intrusions. Such false alerts often make network administrators turn off the IDS systems. Thus, it is of crucial importance to rapidly and accurately identify both faults and intrusions for network-based IDS systems. With the rapid growth of network bandwidth and fast emergence of new attacks/viruses/worms, existing network IDSs are insufficient due to the lack of the following features.
First, separating anomalies ...
Get Information Assurance now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
