You are here: silicon.com > Resources > White Papers > Security > Intrusion - Tampering > Intrusion Detection Systems

Intrusion Detection Systems White Papers

Intrusion Detection Systems: Network IDS: To Tailor, or Not to Tailor

Tags:
intrusion detection systems

Overview Intrusion Detection Systems (IDS) identify attacks on a company’s resources. These IDS devices watch points in the company’s network infrastructure (network intrusion detection), or operate on a specific company asset (host based intrusion detection). These products detect attacks by comparing incoming activity to rule sets and patterns in search of hostile activity (signature based) or by comparing incoming activity against a known baseline in search of out-of-the- ordinary usage (anomaly based). Both signature and anomaly based intrusion detection are resource intensive. IDS resources include CPU, Network interface card (NIC), Memory (RAM), Storage (Hard Drive, SANS, etc), and, an overlooked end analyst. This user is often the most under-appreciated component of the IDS design as well as the most important. The analyst must find details and make correlations between multiple information sources.

Further White Paper Details
Publisher	SANS Institute	File Format	PDF, requires Acrobat Rdr 5
Date Published	March 2002	Downloads	8
Format	White Papers
Topics	Intrusion Detection Systems, Network Security

Did you find this white paper useful?

Live video broadcast: Data Loss Prevention from the Inside Out

Publisher:
Cisco Systems

CAMNEP: Agent-Based Network Intrusion Detection System

Publisher:
IFAAMAS

Tags:
network security

Raising the bar for hackers (Security)

Publisher:
Siemens

Gartner MarketScope for Network Access Control, 2008 brought to you by Sophos

Publisher:
Sophos

Tags:
firewalls

NAC at the endpoint: Control your network through device compliance

Publisher:
Sophos

Tags:
network security

US security council fights back

The pattern-matching system, known as the Federal Intrusion Detection Network (Fidet) would alert authorities to attacks which could cripple Government operations or even the economy. Clinton's National Security Council (NSC) is calling for a...

Channel:
Security Strategy

Security experts warn of massive hack attack

Ryan explained: "Most other Trojan Horses, like BackOrifice, create a permanent connection so it is easier to detect. Peapod contacted most major anti-virus and intrusion detection vendors late last week to alert them to the dangers of Investigator...

Channel:
Security Strategy

Cisco set to cash in on network attack fears

Cisco has hinted it will be launching a gigabit speed intrusion detection system as well enhanced VPN products. The company already has the largest market share for network security devices, such as VPNs, firewalls and intrusion detection systems.

Channel:
Security Strategy

Globix offers protection against brute force net attacks

Hosting services company Globix has turned to Top Layer Networks to offer intrusion detection to customers whose online services are vulnerable to attacks We view intrusion detection systems as smart firewalls, so for the past nine months we've...

Cracked: The Great Firewall of China

The researchers found it was possible to circumvent the Chinese intrusion detection systems (IDS) by ignoring the forged TCP resets injected by the Chinese routers, which would normally force the endpoints to abandon the connection.

The dos and don'ts of VoIP security

Additional tools that will help networks in case of any attack are intrusion detection and prevention systems, which scan for rogue incoming packets, and straightforward antivirus software which can help prevent any known threats from disrupting...

Virtualisation: Architectual Considerations and other Evaluation Criteria

In the past several years, server virtualisation technology has moved quickly and firmly into the IT mainstream. Of the many approaches to system virtualisation available in the market today, VMware's hypervisor architecture has gained the greatest market acceptance. This paper examines the architectural issues, solution support, and enterprise readiness required when deploying such a virtualisation solution.

Publisher:
EMC

Getting Started with Master Data Management

Master data management forms part of an overall enterprise governance program that aims to establish trusted data throughout the enterprise. This white paper from Mike Ferguson of Intelligent Business Strategies defines master data, examines why it is needed, and explores methodologies for implementing master data management.

Publisher:
DataFlux

Optimising Storage with Global File Virtualisation

This white paper will provide an overview on how Rainfinity Global File Virtualisation virtualises unstructured data environments and moves data -including active, open files-without disruption to users or applications. Rainfinity is the only enterprise-class file virtualisation solution, and delivers complete NAS optimisation across geterogeneous environments, such as NAS, CAS, and file servers.

Publisher:
EMC

Also on silicon.com

Site Navigation:

Intrusion Detection Systems White Papers

Intrusion Detection Systems: Network IDS: To Tailor, or Not to Tailor

Quick Sitemap Links:

About Us

Search

Blogs

Verticals

Advertising Features

CNET Networks in Europe

CNET Networks in the United States

CNET Networks in Asia Pacific