Intrusions or attacks detected from the alerts individually generated by each IDS are analyzed in real-time by using a model of intrusions, responses, and security metrics that allow triggering an inference process from the detected intrusion. Concepts like autonomous system, ontologies, trust and reputation management, collaborative intrusion detection and prevention networks, self-protection, and virtualized honeynets are clearly identified in the previous figure. All of these concepts, presented in the Objectives section, are considered as a key part of the novel automated response system to attacks proposed in RECLAMO.