Intrusion Detection System (IDS) &Intrusion Prevention System (IPS): Case Study

IPS and IDS both examine traffic looking for attacks but they are critically different. The differences between deployment of these system in networks in which IDS are out of band in system, means it cannot sit within the network path but IPS are in-line in the system, means it can pass through in between the devices. IDS generates only alerts if anomaly traffic passes in network traffic, it would be false positive or false negative, means IDS detects only malicious activities but no action taken on those activities but IPS has feature of detection and prevention with auto or manual action taken on those detected malicious activities like drop or block or terminate the connections.

Provided by: International Journal of Scientific & Engineering Research Topic: Security Date Added: Jul 2011 Format: PDF

Find By Topic