©2017 Cisco and/or its affiliates. Snort, the Snort and Pig logo are registered trademarks of Cisco. All rights reserved.
Infoworld states that host-based intrusion-detection system software is a useful way for network managers to find malware, and suggest they run it on every server, not just critical servers. 
Dorothy E. Denning , assisted by Peter G. Neumann , published a model of an IDS in 1986 that formed the basis for many systems today.  Her model used statistics for anomaly detection , and resulted in an early IDS at SRI International named the Intrusion Detection Expert System (IDES), which ran on Sun workstations and could consider both user and network level data.  IDES had a dual approach with a rule-based Expert System to detect known types of intrusions plus a statistical anomaly detection component based on profiles of users, host systems, and target systems. Lunt proposed adding an Artificial neural network as a third component. She said all three components could then report to a resolver. SRI followed IDES in 1993 with the Next-generation Intrusion Detection Expert System (NIDES). 
You have reached an NTT Security (US) Inc. system, which may not be used without, or in excess of, proper authority. All contents of this system and its ...