An Introduction to Network Intrusion Detection Systems
March 17th, 2008 by philipNetwork Intrusion Detection systems to identify security threats through the detection of potentially hazardous activities such as scanned documents, attacks by denial of service attacks and unauthorized access, review network transport. They are available at strategic locations on the network to monitor traffic and all the computers on the network. Unlike packet filters or a firewall, packet filtering, where a decision on the weather or traffic not afford to continue, the network intrusion detection systems are not in conflict with the trafficking network ‘in any way. Simply put, these systems could be described as a packet sniffer, including analysis of the coverage package.
During the year 1997, ISS Real Secure, the first commercial network intrusion detection system, which will soon gain popularity. The following year, Cisco has taken an interest in the field of security through the purchase of a security company named “Wheel Group” for its customers with leading-edge technologies. From that time, a large number of companies, has attracted interest and has been participating in the development and the development of commercial systems. Network Intrusion Detection Systems are today for most network-based security tools.
If a networked computer, the system is not equipped with an intrusion detection system network network administrators may not be aware of the fact that many attacks are taking place and are aware, a successful attack if it occurs, the symptoms. An example of such an attack could be that if an unauthorized user calls the files of passwords from a server connected without the host. The attack could only when the intruder, which uses the password for root, over time, the security system would be seriously compromised. In a network environment with an intrusion detection system, if an attack occurs, succeeded or failed, an alarm is generated and security, the information of inestimable value can be as evidence if legal action necessary measures are taken to prevent the attack or may never occur.