Host-based intrusion detection system

A host-based intrusion detection system (HIDS) is an intrusion detection system that is capable of monitoring and analyzing the internals of a computing system as well as the network packets on its network interfaces, similar to the way a network-based intrusion detection system (NIDS) operates.^[1] HIDS focuses on more granular and internal attacks through focusing monitoring host activities instead of overall network traffic.^[2] HIDS was the first type of intrusion detection software to have been designed, with the original target system being the mainframe computer where outside interaction was infrequent.^[3]

One major issue with using HIDS is that it needs to be installed on each and every computer that needs protection from intrusions. This can lead to a slowdown in device performance and intrusion detection systems.^[4]

^ Cite error: The named reference newman2009 was invoked but never defined (see the help page).
^ Liu, Ming; Xue, Zhi; Xu, Xianghua; Zhong, Changmin; Chen, Jinjun (19 November 2018). "Host-Based Intrusion Detection System with System Calls: Review and Future Trends". ACM Computing Surveys. 51 (5): 98:1–98:36. doi:10.1145/3214304. ISSN 0360-0300.
^ Cite error: The named reference cn31_8_805 was invoked but never defined (see the help page).
^ Ahmad, Zeeshan; Shahid Khan, Adnan; Wai Shiang, Cheah; Abdullah, Johari; Ahmad, Farhan (January 2021). "Network intrusion detection system: A systematic study of machine learning and deep learning approaches". Transactions on Emerging Telecommunications Technologies. 32 (1). doi:10.1002/ett.4150. ISSN 2161-3915.

[newman2009-1] Cite error: The named reference newman2009 was invoked but never defined (see the help page).

[2] Liu, Ming; Xue, Zhi; Xu, Xianghua; Zhong, Changmin; Chen, Jinjun (19 November 2018). "Host-Based Intrusion Detection System with System Calls: Review and Future Trends". ACM Computing Surveys. 51 (5): 98:1–98:36. doi:10.1145/3214304. ISSN 0360-0300.

[cn31_8_805-3] Cite error: The named reference cn31_8_805 was invoked but never defined (see the help page).

[4] Ahmad, Zeeshan; Shahid Khan, Adnan; Wai Shiang, Cheah; Abdullah, Johari; Ahmad, Farhan (January 2021). "Network intrusion detection system: A systematic study of machine learning and deep learning approaches". Transactions on Emerging Telecommunications Technologies. 32 (1). doi:10.1002/ett.4150. ISSN 2161-3915.

[1]

[2]

[3]

[4]