Describe the term intrusion detection in the context of IT-
security?
Answers were Sorted based on User's Feedback
Answer / vik
Intrusion Detection refers to pro-active monitoring of a
network for unauthorized access as defined by the security
policy. It uses known patterns, of attacks, looks at
signatures, and can check against a known database of sites.
IDS features are built into many of the new Integrated
Security Appliances by vendors like Cisco, Juniper, etc.
Newer firewall vendors like Palo Alto networks are
integrating many features into the firewalls that overlap
with an IDS. Snort is a free IDS that has been available
for years. It is great- if you have some in house IT expertise.
IDS is often listed with IPS- Intrusion Prevention Systems.
Is This Answer Correct ? | 7 Yes | 1 No |
Answer / ash10
IDS detect the threats by watching for trends, looking for
attacks that uses particular patterns of messages, and
other factors.
Is This Answer Correct ? | 4 Yes | 1 No |
Answer / s.m.feroz ahmed
Hi,
Intrusion Detection is defined as whenever an Attack is
happening the work of IDS is just to Detect an Attack and
cannot stop the Attack in terms of Firewall an attack is
detected by IDS and keeps a copy of that packet in state
table and allows to enter into Network,So to overcome this
attack one should make use of IPS Intrusion Prevention
System which not only detects an attack but also stops an
Attack.
Is This Answer Correct ? | 0 Yes | 1 No |
Answer / vinay
it means someone tried to hack the security of the network.
Is This Answer Correct ? | 1 Yes | 5 No |
What are the types of Transmission media
How does the HTTP handle state?
What is Cross site scripting?
How does traceroute work? Now how does traceroute make sure that the packet follows the same path that a previous (with ttl - 1) probe packet went in?
In context of public key encryption, if you are using both signature and encryption features, what key will you use for encryption and which one will you use for signing?
What protects the Clark Wilson model?
Diff bet ripv1 & ripv2?
What type of network do you use at home?
What is the purpose of a firewall?
What defensive mechanisms for viruses can be encountered?
How does dlp work?
What is the difference between a switch and a hub?