intrusion detection system

Senses

1 (N)

A process or subsystem, implemented in software or hardware, that automates the tasks of (a) monitoring events that occur in a computer network and (b) analyzing them for signs of security problems. [SP31] (See: intrusion detection.)

IETF RFC 4949 (Internet Security Glossary)

Bibliography

IETF RFC 4949 (Internet Security Glossary)
Accessed Jan 06, 2026Quoted
RFC 4949 — Internet Security Glossary (Version 2)
https://www.rfc-editor.org/rfc/rfc4949.txt
RFC 4949 is published by the IETF Trust and marked as "Distribution of this memo is unlimited". Verify IETF Trust copyright/licensing terms for reuse.
Source: IETF RFC 4949 (rfc-editor.org).

2 (N)

A security alarm system to detect unauthorized entry. [DC6/9]. Tutorial: Active intrusion detection processes can be either host based or network based: "Host based": Intrusion detection components traffic sensors and analyzers run directly on the hosts that they are intended to protect. "Network based": Sensors are placed on subnetwork components, and analysis components run either on subnetwork components or hosts.

A security alarm system to detect unauthorized entry. [DC6/9].

Tutorial: Active intrusion detection processes can be either host- based or network-based:

"Host-based": Intrusion detection components -- traffic sensors and analyzers -- run directly on the hosts that they are intended to protect.
"Network-based": Sensors are placed on subnetwork components, and analysis components run either on subnetwork components or hosts.

IETF RFC 4949 (Internet Security Glossary)

Bibliography

IETF RFC 4949 (Internet Security Glossary)