Intrusion detection systems today are relatively capable of detecting network intrusions by attackers. Unfortunately, these systems operate on a network level and not on a system level. Meanwhile, antivirus software is typically capable of detecting known viruses but cannot easily stop zero day exploits. The paper will propose a fuzzy inference system to detect exploitation of a system using system metrics such as CPU, memory usage and network connections. This system is implemented using the MATLAB fuzzy logic toolbox. The design was tested and provided reasonable results.
展开▼