Z. Fang, L. Yuan, X. Jiao, X. Song, Y. Hong, J. Xuan, Y. Li, and X. Li (PRC)
CIDF, IDS, 2-stage processing technology, parallelprocessing technology.
The traditional IDS, lots of work should be done on the
computer where the event analyzer had been established.
It made this computer become bottleneck in system, and
had affected the performance of IDS. In order to solve
this problem, we present a new CIDF_Based IDS. In our
IDS, we had improved the event analyzer by using 2-stage
processing technology and parallel processing technology.
The improved IDS accelerated the data analysis speed,
improved the ability of intrusion tolerance, and reduced
the false positives rate and false negatives rate.