Cyber-attacks are becoming more sophisticated and thereby presenting increasing challenges in accurately detecting intrusions. Failure to prevent the intrusions could degrade the credibility of security services, e.g. data confidentiality, integrity, and availability. Numerous intrusion detection methods have been proposed in the literature to tackle computer security threats, which can be broadly classified into Signature-based Intrusion Detection Systems (SIDS) and Anomaly-based Intrusion Detection Systems (AIDS). This survey paper presents a taxonomy of contemporary IDS, a comprehensive review of notable recent works, and an overview of the datasets commonly used for evaluation purposes. It also presents evasion techniques used by attackers to avoid detection and discusses future research challenges to counter such techniques so as to make computer systems more secure.

中文翻译：

---

入侵检测系统概览：技术、数据集和挑战

网络攻击变得越来越复杂，因此在准确检测入侵方面提出了越来越多的挑战。未能阻止入侵可能会降低安全服务的可信度，例如数据机密性、完整性和可用性。文献中提出了许多解决计算机安全威胁的入侵检测方法，这些方法可以大致分为基于签名的入侵检测系统（SIDS）和基于异常的入侵检测系统（AIDS）。这份调查报告介绍了当代 IDS 的分类法、对近期著名作品的全面回顾，以及对通常用于评估目的的数据集的概述。