Abstract: Intrusion detection is a vital component in any service hosted environment. Intrusion in a network or system involves malicious activities such as information theft, denial of service attacks, etc. Many Intrusion Detection Systems (IDS) are developed and implemented successfully in the protection layer of the service hosted environment; even then the organizations suffer from data loss, injection attacks, back door attacks, etc. Due to intrusions, hundreds of intranet networks and thousands of websites report attacked each year and the number has not reduced in past corresponding days. Some intrusions/attacks use stealthy evasion techniques to evade the IDS and access the hosted services. An efficient IDS identifies all possible intrusions that are intended to complement the existing security measures and deter any such intrusions from accessing the hosted environment. In this study, several intrusion detection techniques implemented in network environments are discussed and different evasion approaches used by attackers to bypass the Intrusion Detection System are listed. Also, a novel hybrid intrusion detection approach to identify known and unknown attacks is proposed in which the unknown intrusions are classified from known intrusions by a series of emulation technique in a dedicated virtual machine.
N. Priya and S. Vasantha, 2014. Heuristic Based Hybrid Network Intrusion Detection System: A Novel Approach. Asian Journal of Information Technology, 13: 733-738.