So far, i've only been able to locate a white paper produced by SRI International from 1995 that discusses the theory and practice of Next-Generation Intrusion Dectection Expert Systems.
The paper is quite interesting and provides a solid framework for NIDES, but doesn't provide any technical detail on building, implementing, operating, etc.
Does anyone have any experience(s) with NIDES?
Does anyone have more specific/technical/detailed documets that discuss NIDES? I'm looking for some technical 'meat' to flesh out the theory presented in the SRI document.
I've unsuccessfully googled on the topic - all results (which consist of about 4) reference the 1995 SRI document.
Appreciation extended in advance.