Scribd Logo
Hochladen

Willkommen bei Scribd!

  • Detecting Intrusions and Types of Intrusion Detection Systems

    Hochgeladen von

    marinoasca
    19 Ansichten2 Seiten
    Intrusion detection systems (IDS) monitor network traffic and activity for suspicious behavior and threats. They alert administrators when anomalies or malicious traffic are detected. IDS come in different types, including network-based and host-based, and they can detect threats by looking for known signatures or analyzing traffic patterns to find anomalies. Some IDS just monitor and alert, while others will take active measures like blocking specific IP addresses in response to threats.

    Originalbeschreibung:

    despre Intrusion Detection System

    Originaltitel

    IDS1

    Copyright

    © © All Rights Reserved

    Verfügbare Formate

    DOCX, PDF, TXT oder online auf Scribd lesen

    Stufen Sie dieses Dokument als nützlich ein?

    Sind diese Inhalte unangemessen?

    Dieses Dokument melden
    Intrusion detection systems (IDS) monitor network traffic and activity for suspicious behavior and threats. They alert administrators when anomalies or malicious traffic are detected. IDS come in different types, including network-based and host-based, and they can detect threats by looking for known signatures or analyzing traffic patterns to find anomalies. Some IDS just monitor and alert, while others will take active measures like blocking specific IP addresses in response to threats.

    Copyright:

    © All Rights Reserved
    Als DOCX, PDF, TXT herunterladen oder online auf Scribd lesen
    Markieren Sie unangemessene Inhalte
    19 Ansichten2 Seiten

    Detecting Intrusions and Types of Intrusion Detection Systems

    Hochgeladen von

    marinoasca
    Intrusion detection systems (IDS) monitor network traffic and activity for suspicious behavior and threats. They alert administrators when anomalies or malicious traffic are detected. IDS come in different types, including network-based and host-based, and they can detect threats by looking for known signatures or analyzing traffic patterns to find anomalies. Some IDS just monitor and alert, while others will take active measures like blocking specific IP addresses in response to threats.

    Copyright:

    © All Rights Reserved
    Als DOCX, PDF, TXT herunterladen oder online auf Scribd lesen
    Markieren Sie unangemessene Inhalte
    von 2

    Intrusion Detection can be defined as "...

    the act of detecting actions that attempt to


    compromise the confidentiality, integrity or availability of a resource."
    1
    More
    specifically, the goal of intrusion detection is to identify entities attempting to
    subvert in-place security controls.

    Sistemele de detectare a intruziunilor pot fi definite ca actul de detectare a
    actiunilor care atenteaza la confidentialitatea, integritatea, sau disponibilitatea unei
    resurse.

    ----- http://www.sans.org/security-resources/idfaq/what_is_id.php
    1
    Wikipedia: http://en.wikipedia.org/wiki/Intrusion_detection

    An intrusion detection system (IDS) monitors network traffic and monitors for
    suspicious activity and alerts the system or network administrator. In some cases
    the IDS may also respond to anomalous or malicious traffic by taking action such
    as blocking the user or source IP address from accessing the network.

    Un sistem de detectare a intruziunilor (IDS) monitorizeaza traficul unei retele si
    activitatea suspecta, apoi avertizeaza sistemul sau administratorul sistemului. In
    unele cazuri, IDS-ul poate, de asemenea, raspunde traficului anormal sau rau
    intentionat prin actiuni cum ar fi blocarea user-ului sau sursei adresei IP-ului in
    accesarea retelei.
    IDS come in a variety of flavors and approach the goal of detecting suspicious
    traffic in different ways. There are network based (NIDS) and host based (HIDS)
    intrusion detection systems. There are IDS that detect based on looking for specific
    signatures of known threats- similar to the way antivirus software typically detects
    and protects against malware- and there are IDS that detect based on comparing
    traffic patterns against a baseline and looking for anomalies. There are IDS that
    simply monitor and alert and there are IDS that perform an action or actions in
    response to a detected threat. Well cover each of these briefly.
    IDS se prezinta sub diferite forme si are ca obiectiv sa detecteze traficul suspect
    prin diferite modalitati.
    Exista sisteme de detectare a intruziunilor bazate pe retea (NIDS) si sisteme de
    detectare a intruziunilor bazate pe host (HIDS). Exista IDS-uri care detecteaza
    bazandu-se pe cautarea signaturilor specifice atacurilor cunoscute in mod similar
    actioneaza si antivirusul impotriva programelor malware si IDS-uri care cauta si
    detecteaza anomalii bazandu-se pe comparatia dintre modelele de trafic si nivelul
    de baza. Sunt IDS-uri care doar monitorizeaza si alerteaza, si IDS-uri care
    realizeaza o actiune, sau mai multe actiuni ca raspuns la un atac detectat.

    Das könnte Ihnen auch gefallen