|
1. A method of a communications system that includes a gateway that includes ports for interfacing with a plurality of electronic communication sources and that is communicatively coupled with an intrusion detection system (IDS) device, the IDS device being configured to control communications operations of the gateway in response to detected cyber attacks at the gateway that are indicated by the gateway to the IDS device in response to detection by the gateway of anomalous data of a plurality of data incoming at the ports, the method comprising the following steps: obtaining, by at least one sensor of the gateway, the data incoming at the ports; examining, by the sensor, the obtained data to determine whether any of the obtained data includes anomalies; generating, by the sensor, respective events as a function of instances of the obtained data for which the sensor detects respective anomalies; and randomly selecting, by the sensor, which of the events are further processed by the gateway for reporting of the respective instances to the IDS device, resulting in selected ones of the events and non-selected ones of the events, wherein none of the non-selected ones of the events are reported to the IDS device, the IDS device performing the communications operations control based on the selected ones of the events.
|
