Skip to Main Content
Security of computers and the networks that connect them is increasingly becoming of great significance. Computer security is defined as the protection of computing systems against threats to confidentiality, integrity, and availability. In this paper we present the architecture of our system that combines anomaly and misuse intrusion detection in a hybrid system that tries to take benefit of the best practices of both misuse and anomaly detection approaches. Experimental result shows that our method allows us to recognize not only known attacks but also to detect suspicious activity that may be the result of a new, unknown attack. Our method simplifies features effectively and obtains a higher classification accuracy compared to other methods.