A Security Policy and Network Cartography Based Intrusion Detection and Prevention Systems
During this time when Internet provides essential communication between an infinite numbers of people and is being increasingly used as a tool for commerce, security becomes a tremendously important issue to deal with. Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS) are now considered a mainstream security technology. IDS and IPS are designed to identify security breaches. However, one of the most problems with current IDS and IPS is the lack of the "Environmental Awareness" (i.e. security policy, network topology and software). This paper proposes a novel intrusion detection and prevention architecture where it integrates the characteristics and the properties of the protected system in the traffic analysis process.