You are here: silicon.com > Resources > White Papers > Security > Intrusion - Tampering > Network Security

Network Security White Papers

Pretend Or Prevent? No Matter What It's Called, If a Network Security System Doesn't Shoot First and Ask Questions Later, It Doesn't Qualify As Intrusion Prevention

Tags:
network security

Overview Intrusion detection systems (IDS) and intrusion prevention systems (IPS) describe two different approaches to network security and are not interchangeable. Market demand, however, has prompted some vendors to apply the “prevention” label to systems that detect attacks but actually do nothing to stop them. To qualify as true intrusion prevention, the system must use an in-line appliance to inspect traffic at the packet level and drop offending packets before they reach the victim. Unlike security measures like firewalls or access control lists on routers, intrusion detection systems (IDS) are designed specifically to recognize attacks. The logic is clear: you cannot prevent what you cannot detect.

Further White Paper Details
Publisher	SecureWorks, Inc.	File Format	PDF, requires Acrobat Rdr 5
Date Published	December 2003	Downloads	2
Format	White Papers
Topics	Network Security, Intrusion Detection Systems

Did you find this white paper useful? 2 out of 4 users found this white paper useful

Balancing Security Against Productivity

Publisher:
Novell

Security: New strides in preventing intrusions.

Publisher:
IBM

Novell Zenworks Endpoint Security Management: Total Control from a Single Console

Publisher:
Novell

Secure Desktop On-Demand Webcast

Publisher:
Novell

DTW - DODIIS Trusted Workstation: Intelligence Paradigm for the 21st Century

Publisher:
Sun Microsystems

Slammer time - SQL worm brings net to its knees over weekend

Anti-virus firm F-Secure said the effects were so marked because the worm generates massive amounts of network packets, overloading servers and routers and slowing down network traffic. While this makes it easy to remove - a computer simply has to...

Channel:
Security Strategy

Cisco battles Juniper with worms

Many intrusion prevention solutions have suffered from a high rate of false positives, causing some non-threatening traffic to be dropped. In early 2003, it acquired Okena, a small maker of intrusion prevention software for desktops, in a deal...

Channel:
Security Strategy

Hackers to test MPs' IT systems

The House of Commons is also looking to buy an intrusion prevention system (IPS) - a combination of intrusion detection software and a firewall - to reduce the risk of denial of service attacks, virus outbreaks and Trojans.

VoIP: Don't forget about security

At the call control level, King argues that Cisco's Call Manager application is protected with intrusion prevention software, and serves as a secure control hub for the IP phones. Before the overhaul, the company's network was badly hit by the...

Channel:
VoIP
Tags:
security,
voip

Cracked: The Great Firewall of China

The researchers found it was possible to circumvent the Chinese intrusion detection systems (IDS) by ignoring the forged TCP resets injected by the Chinese routers, which would normally force the endpoints to abandon the connection.

The dos and don'ts of VoIP security

Additional tools that will help networks in case of any attack are intrusion detection and prevention systems, which scan for rogue incoming packets, and straightforward antivirus software which can help prevent any known threats from disrupting...

Live Webcast: Telecoms 2.0 - Where is telecoms heading?

In this webcast, our panel of experts will review where we are with next generation telecoms in the UK, working through the concept of 'Telecoms 2.0': - Realising the potential of Next Generation Networks - why it isn't just about the technology? - What attributes should firms be looking for in their telco partner? - Is the relationship between telco provider and customer changing? - What things need to happen to make next generation services a reality? - You say you want the supplier to change. Do you want to change too? - What is Telecoms 2.0?

Publisher:
ZDNet UK

Telecom 2.0: Mind over matter

ntl:Telewest Business believes that the role of the telco is evolving. Gone are the days when it was enough to simply focus on circuits and minutes, customers now need a far higher degree of interaction and look for suppliers who will talk business solutions with them.

Publisher:
ntl:Telewest Business

IBM Information Server Change Data Capture

In today's fast-paced world, access to real-time data has never been more important. To be successful, organizations need to be able to report and analyze corporate data quickly and easily, regardless of what applications created the data, what platform they're running on, or what database they're stored in.

Publisher:
IBM

An examination of server consolidation: the trends that can drive efficiencies and help businesses gain a competitive edge

This white paper provides a starting point for organizations contemplating server consolidation. It includes an overview of server consolidation concepts and techniques and provides guidance on methodologies. It also looks at the potential cost savings associated with server consolidation and offers information on how organizations can sustain the advantage they have gained by consolidating their servers.

Publisher:
IBM

Also on silicon.com

Site Navigation:

Network Security White Papers

Pretend Or Prevent? No Matter What It's Called, If a Network Security System Doesn't Shoot First and Ask Questions Later, It Doesn't Qualify As Intrusion Prevention

Quick Sitemap Links:

About Us

Search

Blogs

Verticals

Advertising Features

CNET Networks in Europe

CNET Networks in the United States

CNET Networks in Asia Pacific