The article analyzes the approaches to the informative features system construction. As a result of expert assessment an informational approach has been selected for the construction of informative features system and the method of assessment of the information content of the input data flow for the network intrusion detection systems elaborated on its basis. The proposed method allows obtaining quantitative estimations of the information content of the input data flow for the networking systems of attacks detection, which can be used subsequently at the stage of forming the behavior patterns of the information and telecommunication systems.
information protection system, intrusion detection system, incoming data flow
"Metod otsiniuvannia informatyvnosti parametriv potoku vkhidnykh danykh dlia merezhevykh system vyiavlennia atak" ,
Information Processing Systems,