Host-based Intrusion Detection Using Signature-based and AI-driven Anomaly Detection Methods

Publication Type:

Journal Article


Information & Security: An International Journal, Volume 50, Issue 1, p.37-48 (2021)


AI, anomaly detection, artificial intelligence, computer security, Cybersecurity, intrusion detection


Cyberattacks are becoming more sophisticated, posing even greater challenges to traditional intrusion detections methods. Failure to prevent the intrusions could jeopardise security services’ credibility, including data confidentiality, integrity, and availability. Anomaly-based Intrusion Detection Systems and Signature-based Intrusion Detection Systems are two types of systems that have been proposed in the literature to detect security threats. In the current work, a taxonomy of current IDSs is presented, a review of recent works is performed, and we discuss some of the most common datasets used for evaluation. Finally, the survey concludes with a discussion of future IDS research directions and broader observations.