Intrusion Detection Systems – A Reference Guide
Intrusion Detection Systems – A Reference Guide
Intrusion detection systems (IDS) are used to determine whether security has been breached and unauthorized access granted to property, resources or data.
Examples of perimeter-based intrusion detection systems include buried differential-pressure systems, fence-mounted detection systems, infrared (IR) beam systems, stressed-wire fences, and microwave barriers. Intrusion detection (ID) products that provide perimeter security include both equipment, hardware and software components.
They can be used to protect oil fields, prisons, nuclear power plants, chemical processing facilities, embassies, government and corporate offices, military bases and archeological sites. There are two broad applications areas: systems for network systems and systems for property and personnel. Intrusion detection systems for computer networks are used to identify security breaches, prevent external attacks, and stop the internal misuse of resources. Pattern matching detection and statistical anomaly detection are the most common techniques. Intrusion detection systems (IDS) for computer networks differ in terms of features.
Misuse detection systems compare information to a database of attack signatures to determine whether a potential threat is documented. Anomaly detection systems compare monitored network segments to baseline values for network load, protocol and packet size. Network-based intrusion detection systems (NIDS) are designed to detect malicious packets that can compromise firewalls.
Host-based intrusion detection systems examine the activity on individual computers. Passive systems are used to detect security breaches, log data, and signal alerts. By contrast, reactive systems respond to suspicious activities by terminating a user’s session or reprogramming firewalls to block network traffic from specific IP addresses or domains. There are many types of intrusion detection systems (IDS) for perimeter security. Passive systems detect radiant energy or changes in an existing infrared, seismic, or magnetic field.
Active systems radiate beams of infrared light or radio frequency (RF) signals to create a detection field which, when interrupted, causes an alarm to sound or an annunciator to display. Visible systems such as fences can deter potential intruders and lower maintenance costs.
Covert systems are more expensive than exposed ones, but hide the features of the intrusion detection system. Line of sight systems require an unobstructed view from the origin of the detection field to its termination. Examples include bi-static microwave, mono-static microwave, active infrared, and passive infrared systems.
Terrain-based products include buried sensors, sensor fences, fence-mounted sensors, and RF sensors. Volumetric intrusion detection systems create a three-dimensional detection field that is difficult to defeat. Examples include microwave, passive IR, electric field, and video motion products. Linear detection systems require less physical space, but are easier to defeat by bridging or bypassing. Examples include fence mounted products, strain-sensitive sensors, and sensor fences.
I often get people asking me how to choose the best system to serve the purpose; I would say dependant on the business objective in which the applied security system is required the ROI (Return on Investment) and ease of maintenance should be the baseline for your choice.
Naser Awad, Senior Security Consultant Article Source:http://www.articlesbase.com/security-articles/intrusion-detection-systems-a-reference-guide-993679.html
Welcome back! You may want to subscribe to my RSS feed. Thanks for visiting!
If you enjoyed this post, make sure you subscribe to my RSS feed!
Related Posts - Don't Trust VirusBye to Protect Your Security VirusBye is a rogue security program that presents itself as a reliable security tool to the user. As with most other malicious software applications, this one displays exaggerated security threat alerts in order to frighten the user into purchasing the product to solve their problem, which usually does not even......
- 5 Ways to Protect Your Business from Network Vulnerabilities Network vulnerabilities, intrusions and downtime can seriously threaten the livelihood of a business, costing thousands (if not millions) of dollars in revenue and productivity. The more you know your network, the easier it is to guarantee uptime and optimal performance. Here are 5 Ways to Protect Your Business from Network......
- Computer Security: Protecting Your Data Computer Security has become increasingly important as more and more companies rely on software to run their business. This article will provide you information about computer security and how you can use it to protect your data. Whether you’re a business owner, an executive, or an IT manager, the following......
- Comprehensive and Customized Penetration Testing For Your Security Needs In the world of computer security, application penetration testing is the most vital concept. Testing is a way used to test a computer system or network to examine possible points where unauthorized access can be attained. The reason of penetration testing is to locate any and all points of vulnerability......
- Top Quality GE Burglar Alarm And Security Systems Making the world a brighter place, GE, have you heard that line before? Perhaps you've had because it's one of the many advertisements of GE. This particular company has been in the business for many years, and now they have a new line of product which includes the home burglar......
Related Websites -
Personal Security on Social Networking Sites Personal Security on Social Networking Sites By Kellep A. Charles, CISA, CISSP kellep_charles@yahoo.com Visits to social networking sites account for more than 10% of the total time people spend on the Internet, according Nielsen Online. A social network site focuses on building online communities of people who share common interests...... -
YCTP Agency For THTF TsingHua TongFang (THTF) Name Beijing Based Your China Trading Partner As Their New Agent for Europe, North America, and Africa. THTF, a state-owned enterprise or SOE, and which is partnered with TsingHua University in Beijing, which holds the largest equity stake in the group. As the commercial arm of...... - The Advantages Of Affiliate Network Why the affiliate network is so important, and what are the main functions this system should perform? Here are the main advantages of an intermediary. 1. Independent statistics Affiliate Network enables affiliates and advertisers receive real-time all the necessary statistics of the visit, conducted actions and final sales. The most......
- Professional Blogging Roundup: Winter Begins Take a deep breath... Smell it? It's December and that means holidays, traditions, food, spending, gift giving, time off of work, and quality time with loved ones. Happy Holidays! See you next Sunday. Corporate The Korea Times presents Blogging for a Living. Photoshop Tutorial writes in with 5 Reasons Why......
-
Home Network Security [/caption] Home Computer security 1. What is computer security? Computer security is the process of preventing and detecting unauthorized use of your computer. Prevention measures help you to stop unauthorized users (also known as "intruders") from accessing any part of your computer system. Detection helps you to determine whether or......
« Was the Conficker Virus a Hoax? | Home | Trojans, Worms, Rootkits, Explained Simply »
Leave a Comment