An Intrusion (71) System (IDS) is a system that monitons network traffic for suspicious activity and alerts when such activity is discovered While (72) detection and reporting are the primary funcitons of an IDS,some IDSs are also capable of taking actions when (73) activity or anomalous traffic is detected, including(74)traffic sent from suspicious Internet Protocol(IP)addresses,Any malicious venture or violation is normally reported either to anadministretor or collected centrally using a(75) information and event management(SIEM)system.A SIEM system integrates outputs from multiple sources and uses alarm filtering techniques to differentiate malicious actvity from false alarms.