So far, i've only been able to locate a white paper produced by SRI International from 1995 that discusses the theory and practice of Next-Generation Intrusion Dectection Expert Systems.

The paper is quite interesting and provides a solid framework for NIDES, but doesn't provide any technical detail on building, implementing, operating, etc.

Does anyone have any experience(s) with NIDES?

Does anyone have more specific/technical/detailed documets that discuss NIDES? I'm looking for some technical 'meat' to flesh out the theory presented in the SRI document.

I've unsuccessfully googled on the topic - all results (which consist of about 4) reference the 1995 SRI document.

Appreciation extended in advance.